github-starred/android
2
0
Fork 0
mirror of https://github.com/bitwarden/android.git synced 2026-03-13 21:54:17 -05:00
Code Issues 144 Packages Projects Releases 116 Wiki Activity

Android does not connect to self-hosted #296

New Issue
Closed
opened 2025-11-07 08:34:26 -06:00 by GiteaMirror · 1 comment
GiteaMirror commented 2025-11-07 08:34:26 -06:00
Owner
Copy Link

Originally created by @mio-moto on GitHub (Oct 26, 2018).

This seems to be a followup to previous issues.

The setup is as following:

  • Nginx Reverse Proxy
  • Bitwarden_rs (inside a docker container)
  • Full chain and fully trusted LE certificates

My android browser verifies that the certificates are alright and trusted, however the android app does not connect to the service.

Things I have noticed:

  • a connection spinner is shown, URLs are verified
  • nginxs' access log shows no entries

I suspect a bug while handshaking.

Logcat logs from pressing 'log in':

10-26 08:21:34.547  1400  1400 I LatinIme: com.google.android.apps.inputmethod.libs.latin5.LatinIme: onDeactivate()
10-26 08:21:34.556  8380  8380 E x8bit.bitwarde: Invalid ID 0x00000000.
10-26 08:21:34.559  8380  8380 I AssistStructure: Flattened final assist data: 4484 bytes, containing 1 windows, 17 views
10-26 08:21:34.568   880  5595 I AssistStructure: Flattened final assist data: 3956 bytes, containing 1 windows, 17 views
10-26 08:21:34.581  1400  1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: Current locale: de, config allows these locales: de,en,fr,it,es,pt
10-26 08:21:34.581  1400  1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: Conv2Query not enabled due to current app [com.x8bit.bitwarden] not in whitelist
10-26 08:21:34.581  1400  1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: onActivate() : Disabled by unsupported host app
10-26 08:21:34.584  1400  1400 I CurrentMicStatusHolder: ged: Current Mic status = {MicIconHidden-PasswordOrNumberOrDateInputType,}
10-26 08:21:35.208  1826 17647 E NetworkScheduler: Invalid component specified.
10-26 08:21:42.185  9079  9095 I Finsky  : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: BlockingExecutor com.google.android.finsky.bo.ae@85164d4[Running, pool size = 0, active threads = 0, queued tasks = 0, completed tasks = 6]
10-26 08:21:42.186  9079  9095 I Finsky  : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: LightweightExecutor com.google.android.finsky.bo.ae@758b67d[Running, pool size = 3, active threads = 0, queued tasks = 0, completed tasks = 44]
10-26 08:21:42.192  9079  9095 I Finsky  : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: bgExecutor com.google.android.finsky.bo.ae@a0df972[Running, pool size = 4, active threads = 0, queued tasks = 0, completed tasks = 18]
10-26 08:21:44.474  1400  1400 I PhenotypeExpConfig: com.google.android.apps.inputmethod.libs.experiments.PhenotypeExperimentConfiguration: refreshConfiguration() : Force = false : UpdateAvailable = false : Age = 66 minutes : MaxAge = 720 minutes
10-26 08:21:44.530   493   493 D SurfaceFlinger: duplicate layer name: changing com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity to com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1
10-26 08:21:46.448   493   493 D SurfaceFlinger: duplicate layer name: changing Dim Layer for - Task=157 to Dim Layer for - Task=157#1
10-26 08:21:46.471   493   541 W SurfaceFlinger: Attempting to set client state on removed layer: com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1
10-26 08:21:46.471   493   541 W SurfaceFlinger: Attempting to set client state on removed layer: Dim Layer for - Task=157#0
10-26 08:21:46.471   493   541 W SurfaceFlinger: Attempting to destroy on removed layer: com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1
10-26 08:21:46.471   493   541 W SurfaceFlinger: Attempting to destroy on removed layer: Dim Layer for - Task=157#0
10-26 08:21:51.373   880   920 I ActivityManager: Killing 15707:com.discord/u0a148 (adj 901): excessive cpu 6540 during 300165 dur=1508440 limit=2
10-26 08:21:51.382   880   923 W libprocessgroup: kill(-15707, 9) failed: No such process
10-26 08:21:51.423   880  1313 W InputDispatcher: channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)' ~ Consumer closed input channel or an error occurred.  events=0x9
10-26 08:21:51.423   880  1313 E InputDispatcher: channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)' ~ Channel is unrecoverably broken and will be disposed!
10-26 08:21:51.428   880  1399 I WindowManager: WIN DEATH: Window{2fa3926 u0 com.discord/com.discord.app.AppActivity$Main}
10-26 08:21:51.428   880  1399 W InputDispatcher: Attempted to unregister already unregistered input channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)'
10-26 08:21:51.432   880   923 W libprocessgroup: kill(-15707, 9) failed: No such process
10-26 08:21:51.457   880   934 W ActivityManager: setHasOverlayUi called on unknown pid: 15707
10-26 08:21:51.478   880   923 I chatty  : uid=1000(system) ActivityManager identical 1 line
10-26 08:21:51.523   880   923 W libprocessgroup: kill(-15707, 9) failed: No such process
10-26 08:21:51.541   614   614 I Zygote  : Process 15707 exited due to signal (9)
10-26 08:21:51.571   880   923 W libprocessgroup: kill(-15707, 9) failed: No such process
10-26 08:21:51.572   880   923 I libprocessgroup: Successfully killed process cgroup uid 10148 pid 15707 in 191ms

The most likely problem seems to be in here: 10-26 08:21:34.556 8380 8380 E x8bit.bitwarde: Invalid ID 0x00000000. - whatever that says.

Edit: I digged into the error.log of nginx and found following when connecting:

2018/10/26 06:28:01 [error] 22227#22227: OCSP_basic_verify() failed (SSL: error:27069076:OCSP routines:OCSP_basic_verify:signer certificate not found) while requesting certificate status, responder: ocsp.int-x3.letsencrypt.org
Originally created by @mio-moto on GitHub (Oct 26, 2018). This seems to be a followup to previous issues. The setup is as following: - Nginx Reverse Proxy - Bitwarden_rs (inside a docker container) - Full chain and fully trusted LE certificates My android browser verifies that the certificates are alright and trusted, however the android app does not connect to the service. Things I have noticed: - a connection spinner is shown, URLs are verified - nginxs' access log shows no entries I suspect a bug while handshaking. Logcat logs from pressing 'log in': ``` 10-26 08:21:34.547 1400 1400 I LatinIme: com.google.android.apps.inputmethod.libs.latin5.LatinIme: onDeactivate() 10-26 08:21:34.556 8380 8380 E x8bit.bitwarde: Invalid ID 0x00000000. 10-26 08:21:34.559 8380 8380 I AssistStructure: Flattened final assist data: 4484 bytes, containing 1 windows, 17 views 10-26 08:21:34.568 880 5595 I AssistStructure: Flattened final assist data: 3956 bytes, containing 1 windows, 17 views 10-26 08:21:34.581 1400 1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: Current locale: de, config allows these locales: de,en,fr,it,es,pt 10-26 08:21:34.581 1400 1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: Conv2Query not enabled due to current app [com.x8bit.bitwarden] not in whitelist 10-26 08:21:34.581 1400 1400 I Conv2QueryExtension: com.google.android.apps.inputmethod.libs.search.sense.ConversationToQueryExtension: onActivate() : Disabled by unsupported host app 10-26 08:21:34.584 1400 1400 I CurrentMicStatusHolder: ged: Current Mic status = {MicIconHidden-PasswordOrNumberOrDateInputType,} 10-26 08:21:35.208 1826 17647 E NetworkScheduler: Invalid component specified. 10-26 08:21:42.185 9079 9095 I Finsky : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: BlockingExecutor com.google.android.finsky.bo.ae@85164d4[Running, pool size = 0, active threads = 0, queued tasks = 0, completed tasks = 6] 10-26 08:21:42.186 9079 9095 I Finsky : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: LightweightExecutor com.google.android.finsky.bo.ae@758b67d[Running, pool size = 3, active threads = 0, queued tasks = 0, completed tasks = 44] 10-26 08:21:42.192 9079 9095 I Finsky : [91] com.google.android.finsky.bo.ad.run(6): Stats for Executor: bgExecutor com.google.android.finsky.bo.ae@a0df972[Running, pool size = 4, active threads = 0, queued tasks = 0, completed tasks = 18] 10-26 08:21:44.474 1400 1400 I PhenotypeExpConfig: com.google.android.apps.inputmethod.libs.experiments.PhenotypeExperimentConfiguration: refreshConfiguration() : Force = false : UpdateAvailable = false : Age = 66 minutes : MaxAge = 720 minutes 10-26 08:21:44.530 493 493 D SurfaceFlinger: duplicate layer name: changing com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity to com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1 10-26 08:21:46.448 493 493 D SurfaceFlinger: duplicate layer name: changing Dim Layer for - Task=157 to Dim Layer for - Task=157#1 10-26 08:21:46.471 493 541 W SurfaceFlinger: Attempting to set client state on removed layer: com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1 10-26 08:21:46.471 493 541 W SurfaceFlinger: Attempting to set client state on removed layer: Dim Layer for - Task=157#0 10-26 08:21:46.471 493 541 W SurfaceFlinger: Attempting to destroy on removed layer: com.x8bit.bitwarden/md5b95ad25b85f158431f24aa9fc17a1c1e.MainActivity#1 10-26 08:21:46.471 493 541 W SurfaceFlinger: Attempting to destroy on removed layer: Dim Layer for - Task=157#0 10-26 08:21:51.373 880 920 I ActivityManager: Killing 15707:com.discord/u0a148 (adj 901): excessive cpu 6540 during 300165 dur=1508440 limit=2 10-26 08:21:51.382 880 923 W libprocessgroup: kill(-15707, 9) failed: No such process 10-26 08:21:51.423 880 1313 W InputDispatcher: channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)' ~ Consumer closed input channel or an error occurred. events=0x9 10-26 08:21:51.423 880 1313 E InputDispatcher: channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)' ~ Channel is unrecoverably broken and will be disposed! 10-26 08:21:51.428 880 1399 I WindowManager: WIN DEATH: Window{2fa3926 u0 com.discord/com.discord.app.AppActivity$Main} 10-26 08:21:51.428 880 1399 W InputDispatcher: Attempted to unregister already unregistered input channel '2fa3926 com.discord/com.discord.app.AppActivity$Main (server)' 10-26 08:21:51.432 880 923 W libprocessgroup: kill(-15707, 9) failed: No such process 10-26 08:21:51.457 880 934 W ActivityManager: setHasOverlayUi called on unknown pid: 15707 10-26 08:21:51.478 880 923 I chatty : uid=1000(system) ActivityManager identical 1 line 10-26 08:21:51.523 880 923 W libprocessgroup: kill(-15707, 9) failed: No such process 10-26 08:21:51.541 614 614 I Zygote : Process 15707 exited due to signal (9) 10-26 08:21:51.571 880 923 W libprocessgroup: kill(-15707, 9) failed: No such process 10-26 08:21:51.572 880 923 I libprocessgroup: Successfully killed process cgroup uid 10148 pid 15707 in 191ms ``` The most likely problem seems to be in here: `10-26 08:21:34.556 8380 8380 E x8bit.bitwarde: Invalid ID 0x00000000.` - whatever that says. Edit: I digged into the `error.log` of nginx and found following when connecting: ``` 2018/10/26 06:28:01 [error] 22227#22227: OCSP_basic_verify() failed (SSL: error:27069076:OCSP routines:OCSP_basic_verify:signer certificate not found) while requesting certificate status, responder: ocsp.int-x3.letsencrypt.org ```
GiteaMirror commented 2025-11-07 08:34:27 -06:00
Author
Owner
Copy Link

@mio-moto commented on GitHub (Oct 26, 2018):

Alright, this was an administrative problem.

For details:

  • bitwarden_rs uses fullchain.pem certificates to encrypt
  • nginx used chain.pem / cert.pem for reverse proxy
  • nginx was unable to verify the certificate and stopped executing (still wondering why it works on browser with no problems at all)
@mio-moto commented on GitHub (Oct 26, 2018): Alright, this was an administrative problem. For details: - bitwarden_rs uses fullchain.pem certificates to encrypt - nginx used chain.pem / cert.pem for reverse proxy - nginx was unable to verify the certificate and stopped executing (still wondering why it works on browser with no problems at all)
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
app:authenticator
app:password-manager
bug
bug-passkey
customer-support
duplicate
enhancement
good first issue
help wanted
needs-reply
needs-response
pull-request
Mirrored from GitHub Pull Request
 question
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/android#296
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?