Says the guy who still hasn't gotten Amethyst back on F-Droid (blaming the community when at this point they've made it clear they don't have the skills to fix Tor and it's on you to make a separate FOSS version of the app)
Fdroid will never accept our Tor configuration. The Tor lib is not allowed there. We need to rebuild everything just to put things there, tweaking their build system so that fdroid can rebuild as well. And at this point I don't even know how to do it.
Also fdroid sucks. It's a centralized platform whose rules for reviews and approvals are more arbitrary that the Play store itself.
What you're saying is you have failed to replace the Tor lib with an acceptable one, and you're too lazy to make a version with it removed
It also seems like you're too much of a liar to stop calling your app FOSS
But you bitch about other nostr devs
There are no other Tor libs that fix this for now. This has been a problem with many apps on fdroid.
So stop calling the closed source versions of the app open source, and start offering an open source version without Tor to find the next thing F-Droid would complain about (until it is whittled down to where they can't offer a reasoning as valid as how you lie about the app being open source)
I think I just made fixed in GitHub , don’t know if that correct fixed
Nice! Can I see it? Any link?
Lol, our app is fully open source. In fact, it is more opensource than fdroid itself because we allow even for profit companies to use it.
Didn't you tell me yourself F-Droid's reason for rejecting the app is the closed source binary? It's not reproducible because of the Tor part, making it closed source, right? What am I missing?
Restricting profit usages does not make the term "open source" a lie
Using concealed source code does
No, that doesn't make it close source. It's simply that the build changes every time it compiles. But all the source is open. It's just that their build system requires the exact same binaries all the time, which is not the default for any software.
That's not "open source" for the APK people actually install
At best that's "open source" for the nostr-git-hosted source code, "kinda open source" for the github-hosted source code, and "trust me bro it's the same source" for the APK binaries
So stop lying, say "we offer a closed source app with open source code available for people who want to compile it themselves"
And make a version of the app that's also open source
Or explain (preferably to F-Droid) how tf people are supposed to "openly" verify these unique build signatures
See that's is why I hate fdroid. They keep people thinking that just because they cannot compile an app to the same hash, that the app is not open source. The two things have nothing to do with one another.
If that is the standard, Linux itself is not opensource. Because fdroid cannot compile it to their standard. Which is just hilarious.
You are correct, most Linux distros and kernels are not open source. Very fucked up to blame F-Droid for that while you keep lying
The FOSS Linux kernel is open source and there are FOSS Linux distros
Many closed source Linux distros also lie about being open source
And it's often beyond simply changing binary signatures for every build - it's actually including proprietary stuff even in the public repos (but still often trying to gaslight users to call it "open source" without qualifiers)
I didn't say distros or other kernels. I said Linux itself. F-droid cannot compile the core kernel from Linus himself.
I didn't say the main Linus kernel is open source
If Linus says that he should stop lying too, I'm pretty sure his kernel is one of the ones that goes beyond some weird "signature changing build process" and actually full on includes proprietary shit in the repos
Lol. Everybody is lying then, except fdroid right? They are fucking saints over there.
No, not everyone is lying
I don't call closed source apps open source
Wasn't your app open source in the past when f-droid accepted it?
There are plenty of actual foss Linux distros (including kernel) - pretty sure debian's "without-nonfree" repos and binaries are all verifiable and FOSS, not skilled enough to verify it myself though
Lol. Fdroid can't compile the Debian without nonfree version too.
Our app is fully open source. You can pay a lawer to review it if you want.
Is debian unable to compile Trisquel?
I have paid F-Droid to review your app (and every other app submitted to them), you failed
If you want a second opinion, fund it yourself or explain it yourself as I said above
*Is F-Droid unable to compile Trisquel
I don't see
1. Where you're getting that free Linux distros don't meet F-Droid's requirements
2. Why it would matter if an entire Linux distro meets these requirements when your app has met them in the past and we're given a specific reason it doesn't anymore
All I am saying is that fdroid requires much more than just "opensource" test. Many things are opensource that will never pass their tests.
For instance, if your app is hosted by GitHub, like the Tor lib one, that alone automatically disqualifies you as opensource. Which is ridiculous because the code is still freesoftware regardless of where it is hosted.
But at the same time, your app is free if it is hosted by Google or one of the other cloud providers. Which doesnt make any sense.
If you mean being available NOWHERE ELSE but GitHub, then F-Droid is correct, because GitHub is private availability, not public availability.
People are obsessed with lies and decentralization right now, so it's hard to get through life without humoring people who would call GitHub source code "publicly available" (and using their wording), but it's not actual truth.
Either way, your app made it through in the past
Tor is hosted in many places, including inside the Tor network itself with onion addresses. But that is irrelevant for fdroid policies.
Our app was there before, but since we added Tor, they removed it. I am not going to remove one of our most important privacy features just to please arbitrary rules of a centralized app store.
Tor is critically threatened. I get that.
FOSS is also critically threatened by people faking it.
The F-Droid people either care about FOSS, or have themselves backed into a corner where they have to pretend to care about FOSS to avoid the uprising of a competitor.
You either care about Tor, or have yourself backed into a corner where you have to pretend to care about it.
I either care about both, or have myself backed into a corner where I have to pretend to care about both
Tor and FOSS cannot be saved without saving each other
If f-droid cared about FOSS they would only verify the compliance to foss itself. And not these other arbitrary rules they have. By adding other stuff to their rules, they are breaking the FOSS community and picking winners that might align with their sponsor.
The where are you getting that Trisquel wouldn't meet their requirements or whatever? You seem to be lying, I don't see a reasoning where this could be true
They should put qualifiers on their statements about being open source, then.
But they also have the argument that people will just compile it themselves if they care, because their product is very niche.
Social media isn't that niche, you can't expect everyone that cares about open source social media apps to realize at first glance the difference between yours and one with a more verifiable pre compiled binary
Is what I'm saying more accurate now or am I still missing something? Sorry about the delayed reply, was driving for a bit
Yes, but I don't know if they care enough to change. They seem to like the power of telling how people should ship their apps. To me that power shouldn't even exist. That's why Obtainium or Zapstore are better models. No central cartel to decide what is and is not acceptable.
How would Obtainium or Zapstore ever help users verify apps are built from the right source code?
I don't exactly feel like you're lying anymore, but I still don't see the argument that F-Droid shouldn't have this requirement for the sake of FOSS integrity
That's not the role of a store. That's the role of other users. On zapstore, you can see which other users liked the app. If the fdroid team wants to join, they can simply tag or like the apps they approve. If you trust them, you can follow them and filter by their approvals. If you don't, you can see everything else. The store is just there to allow people to rate apps and it never blocks anything.
Absolutely convincing. I need to rethink what solutions are needed. Thank you for your time
