freedombox - Debian Package Tracker

general

source: freedombox (main)
version: 26.3
maintainer: FreedomBox packaging team (archive) (DMD)
uploaders: Tzafrir Cohen [DMD] – Petter Reinholdtsen [DMD] – Piotr Ożarowski [DMD] – Nick Daly [DMD] – Sunil Mohan Adapa [DMD] – Federico Ceratto [DMD] – James Valleroy [DMD]
arch: all
std-ver: 4.7.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 21.4.4
oldstable: 23.6.2+deb12u1
old-bpo: 25.9.3~bpo12+2
stable: 25.9.3+deb13u1
stable-bpo: 26.2~bpo13+1
testing: 26.3
unstable: 26.3

versioned links

21.4.4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
23.6.2+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
25.9.3~bpo12+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
25.9.3+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
26.2~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
26.3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

freedombox (4 bugs: 0, 4, 0, 0)
freedombox-doc-en
freedombox-doc-es

action needed

Depends on packages which need a new maintainer normal

The packages that freedombox depends on which need a new maintainer are:

dblatex (#942402)
- Build-Depends: dblatex
docbook-xsl (#802370)
- Build-Depends: docbook-xsl

Created: 2020-11-17 Last update: 2026-02-07 22:01

33 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit cc8fa47efe1040a7b83e0e04b89797c2f1a42f9c
Author: kosagi <marti.torra@natana.cat>
Date:   Fri Feb 6 13:48:49 2026 +0100

    Translated using Weblate (Catalan)
    
    Currently translated at 55.2% (1042 of 1885 strings)

commit 59c3b49d8b75f1b3e7b8245a917d0692492e5425
Author: Daniel Wiik <d.wiik@outlook.com>
Date:   Thu Feb 5 23:26:21 2026 +0100

    Translated using Weblate (Swedish)
    
    Currently translated at 79.9% (1507 of 1885 strings)

commit a4cfb824e81455fe1c1eb1bfe1c4e43e2797044b
Author: Pierfrancesco Passerini <p.passerini@gmail.com>
Date:   Fri Feb 6 22:11:25 2026 +0100

    Translated using Weblate (Italian)
    
    Currently translated at 100.0% (1885 of 1885 strings)

commit 59329169e4ec47cebf72faf7d2569268320ef5df
Author: Frederico Gomes <fredericojfgomes@gmail.com>
Date:   Fri Feb 6 19:36:10 2026 +0000

    wireguard: filter .local addresses from showClient view
    
    Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>

commit df7793916c6551d5870a6bd0cad46dad6b0a1636
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Fri Feb 6 11:39:04 2026 -0800

    backups: Fix type checking errors
    
    - Use the passed in argument for copy_ssh_client_public_key instead of
    overwriting it.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 0c8cba3a13c93404c58339b9159224a083569b06
Author: Frederico Gomes <fredericojfgomes@gmail.com>
Date:   Thu Feb 5 13:05:55 2026 +0000

    container: Align terminology with !2731 in printed banner
    
    Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 5da5ef5f96a20865f49519de59fe90b2d9304157
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Thu Feb 5 22:24:16 2026 -0800

    backups: Create a better comment in the generated SSH key file
    
    Tests:
    
    - When /var/lib/plinth/.ssh is deleted and add remote repository form is
    visited, the directory along with SSH key files are created. The .pub file has
    the expected comment freedombox@configured_domain.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 4ae66c034c5004701c67371b1522ddb73003322b
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Thu Feb 5 19:03:54 2026 -0800

    backups: Fix showing proper error for incorrect passphrase
    
    Tests:
    
    - Provide incorrect passphrase when adding a remote repository. Should show a
    message that passphrase is incorrect and redirect back to add remote repository
    form.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit e21ab91b218cb29b1e4602befd863a8857c64f9f
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Thu Feb 5 09:05:16 2026 -0800

    backups: Create .ssh folder before creating SSH key
    
    - As a safe guard although it should exist because of a prior verification of
    SSH key.
    
    - Minor refactor to make the method flatter.
    
    Tests:
    
    - Remove /var/lib/plinth/.ssh and visit add remote repository form. The public
    key is displayed in the form. The files in /var/lib/plinth/.ssh are created with
    expected permissions.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit dd0a0f56a67f2a834158c82cb97248ec296e8804
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Thu Feb 5 08:31:01 2026 -0800

    backups: Simplify handling of migration to SSH keys
    
    - Integrate SSH error handling into borg error handling.
    
    - Move logic to migrate SSH keys into lower levels (Repository class) so that it
    can performed at more instances such as when initializing repository. It also
    provides better abstraction keeping the view logic simpler.
    
    - Drop ability to mount repository using password. This is important next step
    for mounting using systemd unit files.
    
    - Use exceptions to eliminate return value checking.
    
    - Create a special exception for exceptions raised during SSH operations. Raise
    this at lower levels and handle these using the common error handler.
    
    Tests:
    
    - Adding a remote repository with key and password authentication works with and
    without encryption. Adding works with SSH host key pre-verified works too.
    
    - Trying to add a remote repository with incorrect passpharse fails with the
    simplified error message. Redirect happens to add remote repository page. Error
    message with SSH host key pre-verified works too. Repository is removed.
    
    - Trying to provide wrong SSH password fails with a simplified error message.
    Redirect happens to add remote repository page. Repository is removed.
    
    - Mounting a repository after unmounting it works.
    
    - Mounting a repository with SSH password in its configuration works. Migration
    is performed and SSH password is replaced with SSH key file path.
    
    - A schedule for a repository with SSH password runs successfully. An archive is
    created. Migration is performed and SSH password is replaced with SSH key file
    path.
    
    - SSH identity files are created with plinth:plinth ownership. Private key file
    is created with 0o600 permissions and public key file is created with 0o644
    permissions.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit a7ef60015c28df54df307b256c55a48ffd3177fe
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 18:56:55 2026 -0800

    backups: Minor refactoring
    
    Tests:
    
    - Adding a remote repository with key and password authentication works with and
    without encryption.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 2208a7b21046a2b8b6d1f20774364cf94294ee0b
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 18:53:45 2026 -0800

    backups: tests: Simplify functional test using more classes
    
    - This makes the functional test focus more on the repository that is added
    rather than all remote repositories.
    
    Tests:
    
    - Functional tests for backups app works.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit ff7c3a53a51b988a38fd071921282e269fc35545
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 16:31:24 2026 -0800

    backups: Tweak appearance of add remote location form
    
    - Use bootstrapform templates where possible to reduce code.
    
    - Fix incorrect tag for radio button for password authentication.
    
    - Drop borders and instead:
    
      - Style each group as a section. This includes encryption section and
      repository path section.
    
      - Utilize the simplicity as passwords fields are not displayed.
    
    - Retain <label> tag so that clicking on it works and it also easier for
    accessibility tools.
    
    Tests:
    
    - The option for password authentication works are expected. The fields for
    encryption passphrase, ssh password work as before.
    
    - Clicking on form labels focuses the form element.
    
    - Adding a repository with key and password authentication works with and
    without encryption.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 7d3d930137206b346eb29d69a57750371b530ff9
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 16:26:29 2026 -0800

    backups: Show/hide form elements instead of disabling for simplicity
    
    - Unlike the case of network forms, for example, there is nothing the user could
    infer from a disabled form element. If they see a disabled DNS field, they would
    understand that it is an editable value but has been disabled due to other
    option values. It is important to allow users to discover this. However, in case
    of password fields, they are not needed to be shown to the user unless the
    appropriate option is selected.
    
    Tests:
    
    - In the add remote repository form, selecting the authentication type radio
    options shows and hides the password field. Selecting the value for encryption
    type shows and hides the encryption password field.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit ad40072267b391cc29c1d1e8e812b25c9dc354e8
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 16:25:47 2026 -0800

    backups: Fix issue with Javascript in add remote location form
    
    Tests:
    
    - In remote repository add form, selecting radio options for authentication
    types does not throw an error. The password field is shown/hidden as expected.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 305b1f01f56bf5c87b7d33a805c3b494588f17f2
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 16:24:19 2026 -0800

    backups: Avoid some repeated text in form help text
    
    Tests:
    
    - The remote repository add form shows form elements are updated as expected.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 58ecf9d3e486d39f7836cd99186cb6e29ec50121
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Wed Feb 4 16:21:01 2026 -0800

    actions, privileged_daemon: Drop some unused global statements
    
    Tests:
    
    - Make a privileged method throw and exception after spewing output to stdout
    and stderr. The exception caught on the service daemon contains the expected
    stdout and stderr messages.
    
    - Sending SIGTERM to privileged daemon shuts down the daemon.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>

commit 3cb5d1a936eccc1d626cbc71518a5643f6a7df11
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Wed Jan 7 10:20:34 2026 -0500

    backups: Migrate to SSH key auth when mounting
    
    Tests:
    
    - On main branch, add a remote repository with SSH password. Unmount
      the remote location.
    
    - Switch to branch with this change. Mount the remote location. Logs
      show that it is migrated from password to key authentication. Plinth
      database no longer contains password for this remote.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 8b9413c719e86d445abe50669e7c57af56c4479b
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Tue Jan 6 14:25:50 2026 -0500

    backups: Arrange form for adding remote location
    
    - Group together related fields with borders.
    
    - Display errors on form and fields.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 451e582c07979e2d14365bb46b442ba7d7a8d0a0
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Thu Jan 1 13:52:35 2026 -0500

    backups: Test adding/removing remote location
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 043bd44dec0ef8d955dbd5b145b5a43bdd5a3d6a
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Mon Dec 22 19:57:33 2025 -0500

    backups: Use selected SSH credential for remote
    
    - Use javascript to disable or enable password fields.
    
    - If SSH key auth is selected, then try the connection.
    
    - If SSH password auth is selected, then copy the key.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 3558a26b2f72c509eb097c7d1043fafc7540c891
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Sun Dec 21 12:01:23 2025 -0500

    backups: Use SSH key instead of password
    
    - After copying the SSH client public key to the remote host, replace
      the SSH password credential with keyfile.
    
    - Also use SSH key when checking that remote directory exists.
    
    Tests:
    
    - Add remote backup location "tester@localhost:~backups". Test various
      operations like create backup, download backup, unmount and
      mount. Confirm that SSH password is no longer present in plinth
      sqlite database.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit f689e1b3cf469cb2326c43f57a4ce511bf3dbf69
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Fri Dec 12 07:14:39 2025 -0500

    backups: Copy SSH client public key to remote
    
    Tests:
    
    - In development VM, add a remote backup location of "tester@localhost:~/backups".
      Verify the SSH host key. plinth@freedombox key is listed in
      /home/tester/.ssh/authorized_keys.
    
    - Remove the remote backup location, and delete /home/tester/.ssh/authorized_keys.
      Add the same remote backup location again. plinth@freedombox key is again
      listed in /home/tester/.ssh/authorized_keys.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 7fb41313cdeecbac42ec581400dff64ac0594a73
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Sat Dec 6 13:28:43 2025 -0500

    backups: Display SSH public key when adding remote
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 156d0b761fa933094592b26ce907a35f730d93c6
Author: James Valleroy <jvalleroy@mailbox.org>
Date:   Sat Dec 6 12:06:21 2025 -0500

    backups: Generate SSH client key if needed
    
    Tests:
    
    - Click on Add Remote Backup Location. Logs show that SSH client key is
      generated. The private key is readable only by plinth user.
    
    - Go back, and click on Add Remote Backup Location again. Logs show that SSH
      client key already exists.
    
    Signed-off-by: James Valleroy <jvalleroy@mailbox.org>

commit 33d05ef5be27a9e75339c8b5233e8023b0626791
Author: Dietmar <sagen@permondes.de>
Date:   Wed Feb 4 12:02:32 2026 +0100

    Translated using Weblate (German)
    
    Currently translated at 99.2% (1870 of 1885 strings)

commit a1bd01f0c1db803a482ad9f647d3e268ba1f9cca
Author: Besnik Bleta <besnik@programeshqip.org>
Date:   Tue Feb 3 10:47:20 2026 +0100

    Translated using Weblate (Albanian)
    
    Currently translated at 99.6% (1879 of 1885 strings)

commit ea4172a4c23214b863971c4b0a9b42baf2c419ba
Author: Coucouf <coucouf@coucouf.fr>
Date:   Tue Feb 3 22:14:46 2026 +0100

    Translated using Weblate (French)
    
    Currently translated at 100.0% (1885 of 1885 strings)

commit 0ee977a6b04c18af5b29a95eeaea214b67e71ee1
Author: Burak Yavuz <hitowerdigit@hotmail.com>
Date:   Tue Feb 3 11:50:13 2026 +0100

    Translated using Weblate (Turkish)
    
    Currently translated at 100.0% (1885 of 1885 strings)

commit 6b7e518eed8f0bae121e1e7d1bb64ff77d1e8f07
Author: 大王叫我来巡山 <hamburger2048@users.noreply.hosted.weblate.org>
Date:   Tue Feb 3 06:57:24 2026 +0100

    Translated using Weblate (Chinese (Simplified Han script))
    
    Currently translated at 61.3% (1157 of 1885 strings)

commit 196fcea328887b40d9dd7ba1cd0bf0f18f54ee86
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Tue Feb 3 14:20:36 2026 -0800

    ui: Add animation for notification dismissal
    
    Tests:
    
    - When a notification dismiss button is clicked, first it fades and collapses
    at the same time.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
    Reviewed-by: Joseph Nuthalapati <njoseph@riseup.net>

commit e37d26abeea0dedf24737a7333460ded769a39a3
Author: Sunil Mohan Adapa <sunil@medhas.org>
Date:   Tue Feb 3 14:18:00 2026 -0800

    ui: Refactor notification delete buttons to avoid repeating code
    
    Tests:
    
    - Through code changes, ensure that dist upgrade notification, updated to new
    release notification, privacy notification, and app installed notification show
    up. Ensure that they have correct hx- attributes and URL property for dismiss
    button. Clicking dismiss button works as expected.
    
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
    Reviewed-by: Joseph Nuthalapati <njoseph@riseup.net>

commit 13a575017cbbd2166bb56015f6e33ce370dedbcb
Author: Joseph Nuthalapati <njoseph@riseup.net>
Date:   Wed Feb 4 00:15:16 2026 +0530

    ui: Dismiss notifications without page reload
    
    - Delete only the <li> of the notification using HTMX.
    - Notifications list stays open. User can dismiss another notification.
    - Decrement notification counter using JavaScript after removing
      notification from the list.
    - Added HTMX to every kind of notification.
    - Tested dismissing notifications from the top, middle and bottom of the
      list.
    
    Signed-off-by: Joseph Nuthalapati <njoseph@riseup.net>
    [sunil: Update comment format in .js file]
    Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
    Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>

Created: 2026-02-03 Last update: 2026-02-06 23:32

6 open merge requests in Salsa normal

There are 6 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-17 Last update: 2026-02-06 22:03

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2026-02-03 Last update: 2026-02-03 17:47

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #940881 for more information.

Created: 2020-11-08 Last update: 2020-11-08 01:37

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-68462: (needs triaging) Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-12-16 Last update: 2026-02-05 05:00

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2020-11-18 Last update: 2026-01-22 14:30

news

[rss feed]

[2026-02-05] freedombox 26.3 MIGRATED to testing (Debian testing watch)
[2026-02-03] Accepted freedombox 26.3 (source) into unstable (James Valleroy)
[2026-01-24] Accepted freedombox 26.2~bpo13+1 (source) into stable-backports (James Valleroy)
[2026-01-24] freedombox 26.2 MIGRATED to testing (Debian testing watch)
[2026-01-21] Accepted freedombox 26.2 (source) into unstable (James Valleroy)
[2026-01-08] Accepted freedombox 26.1~bpo13+1 (source) into stable-backports (James Valleroy)
[2026-01-08] freedombox 26.1 MIGRATED to testing (Debian testing watch)
[2026-01-06] Accepted freedombox 26.1 (source) into unstable (James Valleroy)
[2026-01-01] Accepted freedombox 25.9.3+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: James Valleroy)
[2025-12-18] freedombox 25.17.1 MIGRATED to testing (Debian testing watch)
[2025-12-16] Accepted freedombox 25.17.1~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-12-16] Accepted freedombox 25.17.1 (source) into unstable (James Valleroy)
[2025-12-12] Accepted freedombox 25.17~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-12-11] freedombox 25.17 MIGRATED to testing (Debian testing watch)
[2025-12-09] Accepted freedombox 25.17 (source) into unstable (James Valleroy)
[2025-11-29] Accepted freedombox 25.16~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-11-27] freedombox 25.16 MIGRATED to testing (Debian testing watch)
[2025-11-25] Accepted freedombox 25.16 (source) into unstable (James Valleroy)
[2025-11-15] Accepted freedombox 25.15~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-11-13] freedombox 25.15 MIGRATED to testing (Debian testing watch)
[2025-11-11] Accepted freedombox 25.15 (source) into unstable (James Valleroy)
[2025-10-30] Accepted freedombox 25.14~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-10-30] freedombox 25.14 MIGRATED to testing (Debian testing watch)
[2025-10-28] Accepted freedombox 25.14 (source) into unstable (James Valleroy)
[2025-10-24] Accepted freedombox 25.13.1~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-10-23] freedombox 25.13.1 MIGRATED to testing (Debian testing watch)
[2025-10-21] Accepted freedombox 25.13.1 (source) into unstable (James Valleroy)
[2025-10-09] Accepted freedombox 25.13~bpo13+1 (source) into stable-backports (James Valleroy)
[2025-10-09] freedombox 25.13 MIGRATED to testing (Debian testing watch)
[2025-10-07] Accepted freedombox 25.13 (source) into unstable (James Valleroy)

bugs [bug history graph]

all: 4
RC: 0
I&N: 4
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 2)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (100, 47)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 25.9.3