Proprietary compontents: Google VR SDK #36
Comments
IzzySoft
added
bug
Aga-C
added
enhancement
|
@IzzySoft thanks for pointing this out. Unfortunately, I haven't found any simple alternatives to those libraries. We probably have to remove them anyway because of GPL. |
|
@naveensingh Maybe we could use this for panoramic photos: https://github.com/hannesa2/panoramaGL. |
|
Until you found a replacement, maybe an iterim work-around would be having two different build flavors (e.g. |
|
@naveensingh Why it was added? And why tibbi version didnt have it? |
|
@Aga-C so it was even in foss flavor? It seems like it. F-droid didnt mind it? I cant see any anti-feature. |
|
@inson1 Yes, looks like they missed it. |
|
@Aga-C thanks |
Yes. We haven't added any libraries or features to the apps since they were forked. These libraries were deprecated by Google but never open-sourced (AFAIK). They are used to display panoramic photos/videos. They are harmless on their own and most people don't care about it but we probably have to remove them because of GPL (@12people what do you think?)
@Aga-C I'll check that, thanks. For now, I think I'll remove these libraries completely and later we'll add support for panoramic stuff using some other FOSS lib. |
I guess F-Droid missed it on its scans as the build servers don't use my library scanner (which brought this up as it has its library definitions constantly updated). If you want to, you can report it there; guess the best place would be the issue tracker of fdroidserver. |
|
@naveensingh It does seem like the libraries used are proprietary and therefore have to be replaced. However, it also seems that Google's Cardboard SDK, the successor to this library that Google itself recommends, is licensed under the Apache 2.0 license (aside from a Unity SDK plug-in that we'd have no use for), so we could just use that. |
|
😞 |
|
@licaon-kter You are from F-droid, right? May you solve it? Add the anti-feature and add it to your scanner? |
No, this needs to be solved here..
NO and YES, there's no antifeature to add, but a new thing to scan for
It's a known issue :) |
|
@licaon-kter I meant the problem with F-droid. Okay, so you are that strict. (in good way ofc) |
Gallery? I guess |
@licaon-kter Sorry I didn't know :) I removed the libraries and created a new release: https://github.com/FossifyOrg/Gallery/releases/tag/1.1.0 I wanted to reduce the app size anyway ;) |
|
@licaon-kter yea gallery, sorry |
|
@IzzySoft ping |
|
@naveensingh pong manually triggered an update as this was missing the regular one by ~92 minutes … through now. Aaand: Looks good 🥳 anti-feature removed, effective with the next sync. @licaon-kter you might wish to simply replace the build in the YAML before the next cycle picks it up then. Ah, you did already – perfect, thanks! |
|
@Aga-C what about closing this? everything seems done |
shouldnt there be some mechanism to inform those who had it installed? like it just disappeared from all f-droid listings, i had to hunt it down from metadata, then its history of commits/MRs and what not to reach here and know what happened. similar to how froid informs about "vulnerability found" (in the screenshots of official fdroid app)
thanks a lot for that 😇: 40.5 MB (v6.28.1) -> 20.9 MB (v1.1.1) is quite a lot; significant enough for me to consider installing it on my Android One device (& finally replacing proprietary QuickPic app on that). |
would be nice, but there's none yet F-Droid does some announcements in the weekly posts: https://f-droid.org/news/ (RSS feed available 😉) Eg. this was announced back then here: https://f-droid.org/2024/01/04/twif.html |
thanks for sharing that, but those things likely wont work for foss-non-interested relatives on whom i (pretty much) forced using f-droid and apps from it. |
|
And the solution would be to show what, announce what, offer to do what? |
|
@licaon-kter window with info about it and two options - uninstall and ok that is my idea |
|
Not sure "non-foss lib to show panorama" really has the same impact as "known vulnerability" |
@licaon-kter glad u asked. step-by-step:
lol, just found out that yetCalc's listing was obliterated too samo for the build of insular: 6.0.5-17... |
the app is gone from the index, F-Droid Client knows only about what's in the index, also by this logic we should keep an ever expanding list of long gone apps? for how long? etc
more maintainers needed then, to code this in the UI and to add this data, where do you add it, for how long, see above?
it stays, but we do some periodic cleanups, and apps with "all versions disabled" and no activity will have to go
it does not change anything about the app but yes, I do understand that something might be needed Feel free to join gitlab and try to mockup something 👍 |
how to get the installer source of an android app 😉
🙊
installer=(org.fdroid.fdroid|org.fdroid.fdroid.privileged) but app not in index |
|
Ah, right, how could I forget that?! :) But... the UX needs a mockup, you have that info, but do you have context? What do you do with that info? A lot of new state to keep track of. Etc |
there were a detailed discussion on this - both on fdroid forums and on issue tracker somewhere in 2021-22, i posted my detailed suggestion at both places. no one paid attention. |
|
I like ideas, but you know what I like more? Merge Requests 😜 |
as that required showcasing a repo, i tried for that too. but was lost on gitlab's poor git interface & my lackluster git knowledge back then so, couldnt proceed to completion (i still aint much comfy with git-remote though... but atleast git-local is well known to me now) |
My library scanner just detected
com.google.vrin the APK provided at releases here, which is a proprietary compontent: Google VR SDK. Relevant lines in the code should be these:I had hence to apply the
NonFreeComp(non-free/proprietary compontents) to your app in my repo. Can there anything be done to avoid that? Thanks in advance!The text was updated successfully, but these errors were encountered: