[GH-ISSUE #7150] SSO: Missing the required MasterPasswordUnlock data property on Bitwarden Android client #30119

Closed
opened 2026-06-17 09:51:37 -05:00 by GiteaMirror · 4 comments
Owner

Originally created by @axyn45 on GitHub (Apr 28, 2026).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/7150

Prerequisites

Vaultwarden Support String

Your environment (Generated via diagnostics page)

  • Vaultwarden version: v1.35.8
  • Web-vault version: v2026.3.1
  • OS/Arch: linux/x86_64
  • Running within a container: true (Base: Debian)
  • Database type: SQLite
  • Database version: 3.51.1
  • Uses config.json: true
  • Uses a reverse proxy: true
  • IP Header check: true (X-Real-IP)
  • Internet access: true
  • Internet access via a proxy: false
  • DNS Check: true
  • Browser/Server Time Check: true
  • Server/NTP Time Check: true
  • Domain Configuration Check: true
  • HTTPS Check: true
  • Websocket Check: true
  • HTTP Response Checks: true

Config & Details (Generated via diagnostics page)

Show Config & Details

Environment settings which are overridden: DOMAIN, ADMIN_TOKEN

Config:

{
  "_duo_akey": null,
  "_enable_duo": true,
  "_enable_email_2fa": false,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_icon_service_csp": "",
  "_icon_service_url": "",
  "_ip_header_enabled": true,
  "_max_note_size": 10000,
  "_smtp_img_src": "***:",
  "admin_ratelimit_max_burst": 3,
  "admin_ratelimit_seconds": 300,
  "admin_session_lifetime": 20,
  "admin_token": "***",
  "allowed_connect_src": "",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "auth_request_purge_schedule": "30 * * * * *",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_conn_init": "",
  "database_idle_timeout": 600,
  "database_max_conns": 10,
  "database_min_conns": 2,
  "database_timeout": 30,
  "database_url": "***************",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "dns_prefer_ipv6": false,
  "domain": "*****://************",
  "domain_origin": "*****://************",
  "domain_path": "",
  "domain_set": true,
  "duo_context_purge_schedule": "30 * * * * *",
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "duo_use_iframe": false,
  "email_2fa_auto_fallback": false,
  "email_2fa_enforce_on_verified_invite": false,
  "email_attempts_limit": 3,
  "email_change_allowed": false,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "emergency_access_allowed": true,
  "emergency_notification_reminder_schedule": "0 3 * * * *",
  "emergency_request_timeout_schedule": "0 7 * * * *",
  "enable_db_wal": true,
  "enable_websocket": true,
  "enforce_single_org_with_reset_pw_policy": false,
  "event_cleanup_schedule": "0 10 0 * * *",
  "events_days_retain": null,
  "experimental_client_feature_flags": "",
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "http_request_block_non_global_ips": true,
  "http_request_block_regex": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "icon_redirect_code": 302,
  "icon_service": "internal",
  "incomplete_2fa_schedule": "30 * * * * *",
  "incomplete_2fa_time_limit": 3,
  "increase_note_size_limit": false,
  "invitation_expiration_hours": 120,
  "invitation_org_name": "OKKK Keys",
  "invitations_allowed": true,
  "ip_header": "X-Real-IP",
  "job_poll_interval_ms": 30000,
  "log_file": null,
  "log_level": "info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "login_ratelimit_max_burst": 10,
  "login_ratelimit_seconds": 60,
  "org_attachment_limit": null,
  "org_creation_users": "",
  "org_events_enabled": false,
  "org_groups_enabled": false,
  "password_hints_allowed": true,
  "password_iterations": 600000,
  "purge_incomplete_sso_auth": "0 20 0 * * *",
  "push_enabled": true,
  "push_identity_uri": "https://identity.bitwarden.com",
  "push_installation_id": "***",
  "push_installation_key": "***",
  "push_relay_uri": "https://push.bitwarden.com",
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "send_purge_schedule": "0 5 * * * *",
  "sendmail_command": null,
  "sends_allowed": true,
  "sends_folder": "data/sends",
  "show_password_hint": false,
  "signups_allowed": false,
  "signups_domains_whitelist": "",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": null,
  "smtp_debug": false,
  "smtp_embed_images": true,
  "smtp_explicit_tls": null,
  "smtp_from": "****************",
  "smtp_from_name": "*********",
  "smtp_host": "***************************************",
  "smtp_password": "***",
  "smtp_port": 587,
  "smtp_security": "starttls",
  "smtp_ssl": null,
  "smtp_timeout": 15,
  "smtp_username": "********************",
  "sso_allow_unknown_email_verification": true,
  "sso_audience_trusted": null,
  "sso_auth_only_not_session": false,
  "sso_authority": "*****://*******************************************************************",
  "sso_authorize_extra_params": "",
  "sso_callback_path": "*****://*****************************************",
  "sso_client_cache_expiration": 0,
  "sso_client_id": "************************************",
  "sso_client_secret": "***",
  "sso_debug_tokens": false,
  "sso_enabled": true,
  "sso_master_password_policy": null,
  "sso_only": false,
  "sso_pkce": true,
  "sso_scopes": "openid profile offline_access User.Read",
  "sso_signups_match_email": true,
  "templates_folder": "data/templates",
  "tmp_folder": "data/tmp",
  "trash_auto_delete_days": null,
  "trash_purge_schedule": "0 5 0 * * *",
  "use_sendmail": false,
  "use_syslog": false,
  "user_attachment_limit": null,
  "user_send_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}

Vaultwarden Build Version

v1.35.8

Deployment method

Official Container Image

Custom deployment method

No response

Reverse Proxy

nginx 1.28.2

Host/Server Operating System

Linux

Operating System Version

Fedora Server 43

Clients

Android

Client Version

2026.4.0

Steps To Reproduce

  1. Enable SSO globally (in my case Microsoft Entra ID), and disable user signups
  2. Open Bitwarden app on android, select selfhosted, type custom URL
  3. Enter a user's email and login with SSO (the user should be able to login with SSO but never registered on vaultwarden)
  4. Prompted to reset master password

Expected Result

User automatically got enrolled and registered

Actual Result

An error pops up with logs to copy. But if you now go back to the login screen and try again to login with SSO+master password or simply master password, user will be logged in.

Logs

# This logs is generated by Bitwarden Android app, not Vaultwarden
Stacktrace:
com.bitwarden.core.data.repository.error.MissingPropertyException: Missing the required MasterPasswordUnlock data property
	coa.V(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:162)
	h70.a0(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:588)
	r60.invokeSuspend(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:13)
	jm0.resumeWith(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:8)
	il2.run(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:114)
	[android.os](http://android.os/).Handler.handleCallback(Handler.java:958)
	[android.os](http://android.os/).Handler.dispatchMessage(Handler.java:99)
	[android.os](http://android.os/).Looper.loopOnce(Looper.java:230)
	[android.os](http://android.os/).Looper.loop(Looper.java:319)
	android.app.ActivityThread.main(ActivityThread.java:9063)
	java.lang.reflect.Method.invoke(Native Method)
	[com.android.internal.os](http://com.android.internal.os/).RuntimeInit$MethodAndArgsCaller.run(RuntimeInit.java:588)
	[com.android.internal.os](http://com.android.internal.os/).ZygoteInit.main(ZygoteInit.java:1103)

Version: 2026.4.0 (21434)
Device: 📱 samsung SM-S9260 🤖 14@34 📦 prod
CI: 🧱 commit: bitwarden/android/release/2026.4-rc50@61955d7cbe1546a4c467284b4a5491d4f0e47afa
💻 build source: bitwarden/android/actions/runs/23952219208/attempts/1

Screenshots or Videos

No response

Additional Context

No response

Originally created by @axyn45 on GitHub (Apr 28, 2026). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/7150 ### Prerequisites - [x] I have searched the existing **Closed _AND_ Open** [Issues](https://github.com/dani-garcia/vaultwarden/issues?q=is%3Aissue%20) **_AND_** [Discussions](https://github.com/dani-garcia/vaultwarden/discussions?discussions_q=) - [x] I have searched and read the [documentation](https://github.com/dani-garcia/vaultwarden/wiki/) ### Vaultwarden Support String ### Your environment (Generated via diagnostics page) * Vaultwarden version: v1.35.8 * Web-vault version: v2026.3.1 * OS/Arch: linux/x86_64 * Running within a container: true (Base: Debian) * Database type: SQLite * Database version: 3.51.1 * Uses config.json: true * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * Browser/Server Time Check: true * Server/NTP Time Check: true * Domain Configuration Check: true * HTTPS Check: true * Websocket Check: true * HTTP Response Checks: true ### Config & Details (Generated via diagnostics page) <details><summary>Show Config & Details</summary> **Environment settings which are overridden:** DOMAIN, ADMIN_TOKEN **Config:** ```json { "_duo_akey": null, "_enable_duo": true, "_enable_email_2fa": false, "_enable_smtp": true, "_enable_yubico": true, "_icon_service_csp": "", "_icon_service_url": "", "_ip_header_enabled": true, "_max_note_size": 10000, "_smtp_img_src": "***:", "admin_ratelimit_max_burst": 3, "admin_ratelimit_seconds": 300, "admin_session_lifetime": 20, "admin_token": "***", "allowed_connect_src": "", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "auth_request_purge_schedule": "30 * * * * *", "authenticator_disable_time_drift": false, "data_folder": "data", "database_conn_init": "", "database_idle_timeout": 600, "database_max_conns": 10, "database_min_conns": 2, "database_timeout": 30, "database_url": "***************", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "dns_prefer_ipv6": false, "domain": "*****://************", "domain_origin": "*****://************", "domain_path": "", "domain_set": true, "duo_context_purge_schedule": "30 * * * * *", "duo_host": null, "duo_ikey": null, "duo_skey": null, "duo_use_iframe": false, "email_2fa_auto_fallback": false, "email_2fa_enforce_on_verified_invite": false, "email_attempts_limit": 3, "email_change_allowed": false, "email_expiration_time": 600, "email_token_size": 6, "emergency_access_allowed": true, "emergency_notification_reminder_schedule": "0 3 * * * *", "emergency_request_timeout_schedule": "0 7 * * * *", "enable_db_wal": true, "enable_websocket": true, "enforce_single_org_with_reset_pw_policy": false, "event_cleanup_schedule": "0 10 0 * * *", "events_days_retain": null, "experimental_client_feature_flags": "", "extended_logging": true, "helo_name": null, "hibp_api_key": null, "http_request_block_non_global_ips": true, "http_request_block_regex": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "icon_redirect_code": 302, "icon_service": "internal", "incomplete_2fa_schedule": "30 * * * * *", "incomplete_2fa_time_limit": 3, "increase_note_size_limit": false, "invitation_expiration_hours": 120, "invitation_org_name": "OKKK Keys", "invitations_allowed": true, "ip_header": "X-Real-IP", "job_poll_interval_ms": 30000, "log_file": null, "log_level": "info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "login_ratelimit_max_burst": 10, "login_ratelimit_seconds": 60, "org_attachment_limit": null, "org_creation_users": "", "org_events_enabled": false, "org_groups_enabled": false, "password_hints_allowed": true, "password_iterations": 600000, "purge_incomplete_sso_auth": "0 20 0 * * *", "push_enabled": true, "push_identity_uri": "https://identity.bitwarden.com", "push_installation_id": "***", "push_installation_key": "***", "push_relay_uri": "https://push.bitwarden.com", "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "send_purge_schedule": "0 5 * * * *", "sendmail_command": null, "sends_allowed": true, "sends_folder": "data/sends", "show_password_hint": false, "signups_allowed": false, "signups_domains_whitelist": "", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": null, "smtp_debug": false, "smtp_embed_images": true, "smtp_explicit_tls": null, "smtp_from": "****************", "smtp_from_name": "*********", "smtp_host": "***************************************", "smtp_password": "***", "smtp_port": 587, "smtp_security": "starttls", "smtp_ssl": null, "smtp_timeout": 15, "smtp_username": "********************", "sso_allow_unknown_email_verification": true, "sso_audience_trusted": null, "sso_auth_only_not_session": false, "sso_authority": "*****://*******************************************************************", "sso_authorize_extra_params": "", "sso_callback_path": "*****://*****************************************", "sso_client_cache_expiration": 0, "sso_client_id": "************************************", "sso_client_secret": "***", "sso_debug_tokens": false, "sso_enabled": true, "sso_master_password_policy": null, "sso_only": false, "sso_pkce": true, "sso_scopes": "openid profile offline_access User.Read", "sso_signups_match_email": true, "templates_folder": "data/templates", "tmp_folder": "data/tmp", "trash_auto_delete_days": null, "trash_purge_schedule": "0 5 0 * * *", "use_sendmail": false, "use_syslog": false, "user_attachment_limit": null, "user_send_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` </details> ### Vaultwarden Build Version v1.35.8 ### Deployment method Official Container Image ### Custom deployment method _No response_ ### Reverse Proxy nginx 1.28.2 ### Host/Server Operating System Linux ### Operating System Version Fedora Server 43 ### Clients Android ### Client Version 2026.4.0 ### Steps To Reproduce 1. Enable SSO globally (in my case Microsoft Entra ID), and disable user signups 2. Open Bitwarden app on android, select selfhosted, type custom URL 3. Enter a user's email and login with SSO (the user should be able to login with SSO but never registered on vaultwarden) 4. Prompted to reset master password ### Expected Result User automatically got enrolled and registered ### Actual Result An error pops up with logs to copy. But if you now go back to the login screen and try again to login with SSO+master password or simply master password, user will be logged in. ### Logs ```text # This logs is generated by Bitwarden Android app, not Vaultwarden Stacktrace: com.bitwarden.core.data.repository.error.MissingPropertyException: Missing the required MasterPasswordUnlock data property coa.V(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:162) h70.a0(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:588) r60.invokeSuspend(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:13) jm0.resumeWith(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:8) il2.run(r8-map-id-ecf50f37d82f8f824a2d7f93137d2fb3daecf8d38cd04065ed169a062cb9dc1d:114) [android.os](http://android.os/).Handler.handleCallback(Handler.java:958) [android.os](http://android.os/).Handler.dispatchMessage(Handler.java:99) [android.os](http://android.os/).Looper.loopOnce(Looper.java:230) [android.os](http://android.os/).Looper.loop(Looper.java:319) android.app.ActivityThread.main(ActivityThread.java:9063) java.lang.reflect.Method.invoke(Native Method) [com.android.internal.os](http://com.android.internal.os/).RuntimeInit$MethodAndArgsCaller.run(RuntimeInit.java:588) [com.android.internal.os](http://com.android.internal.os/).ZygoteInit.main(ZygoteInit.java:1103) Version: 2026.4.0 (21434) Device: 📱 samsung SM-S9260 🤖 14@34 📦 prod CI: 🧱 commit: bitwarden/android/release/2026.4-rc50@61955d7cbe1546a4c467284b4a5491d4f0e47afa 💻 build source: bitwarden/android/actions/runs/23952219208/attempts/1 ``` ### Screenshots or Videos _No response_ ### Additional Context _No response_
GiteaMirror added the bug label 2026-06-17 09:51:37 -05:00
Author
Owner

@axyn45 commented on GitHub (Apr 28, 2026):

This issue is similar to #6756 but in my case I didn't encounter the problem for unlocking. This error only appears when trying to log in with SSO and the user is new/not registered in vaultwarden, on Bitwarden Android app (not sure for iOS).

BTW I tried on Windows client as well and it worked with no errors, the registration process was smooth. On the Chrome extension however, after being redirected from SSO auth provider, the page stuck in the loading screen seemingly forever.

<!-- gh-comment-id:4334460745 --> @axyn45 commented on GitHub (Apr 28, 2026): This issue is similar to #6756 but in my case I didn't encounter the problem for unlocking. This error only appears when trying to log in with SSO and the user is new/not registered in vaultwarden, on Bitwarden Android app (not sure for iOS). BTW I tried on Windows client as well and it worked with no errors, the registration process was smooth. On the Chrome extension however, after being redirected from SSO auth provider, the page stuck in the loading screen seemingly forever.
Author
Owner

@BlackDex commented on GitHub (Apr 28, 2026):

Could you provide the Vaultwarden logs during this attempt?
And if possible z maybe with LOG_LEVEL=debug

<!-- gh-comment-id:4334634345 --> @BlackDex commented on GitHub (Apr 28, 2026): Could you provide the Vaultwarden logs during this attempt? And if possible z maybe with `LOG_LEVEL=debug`
Author
Owner

@axyn45 commented on GitHub (Apr 28, 2026):

Click to expand
[2026-04-28 12:54:47.556][request][INFO] POST /api/organizations/domain/sso/verified
[2026-04-28 12:54:47.557][response][INFO] (get_org_domain_sso_verified) POST /api/organizations/domain/sso/verified => 200 OK
[2026-04-28 12:54:47.905][request][INFO] GET /identity/sso/prevalidate?domainHint=vaultwarden-dummy-o
[2026-04-28 12:54:47.906][response][INFO] (prevalidate) GET /identity/sso/prevalidate => 200 OK
[2026-04-28 12:54:48.725][request][INFO] GET /identity/connect/authorize?client_id=mobile&redirect_uri=
[2026-04-28 12:54:48.729][reqwest::connect][DEBUG] starting new connection: https://login.microsoftonline.com/
[2026-04-28 12:54:48.731][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443
[2026-04-28 12:54:48.731][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443
[2026-04-28 12:54:48.731][rustls::client::hs][DEBUG] No cached session for DnsName("login.microsoftonline.com")
[2026-04-28 12:54:48.731][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:54:49.128][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384
[2026-04-28 12:54:49.128][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:54:49.558][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. }
[2026-04-28 12:54:49.558][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2")
[2026-04-28 12:54:49.559][h2::client][DEBUG] binding client connection
[2026-04-28 12:54:49.559][h2::client][DEBUG] client connection bound
[2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:54:49.559][h2::proto::connection][DEBUG] Connection; peer=Client
[2026-04-28 12:54:49.559][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", login.microsoftonline.com)
[2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 }
[2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 }
[2026-04-28 12:54:49.913][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:54:49.913][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) }
[2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:54:49.914][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com)
[2026-04-28 12:54:49.914][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(3), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(3), flags: (0x4: END_HEADERS) }
[2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3) }
[2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3), flags: (0x1: END_STREAM) }
[2026-04-28 12:54:50.142][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) }
[2026-04-28 12:54:50.142][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library)
[2026-04-28 12:54:50.142][rustls::common_state][DEBUG] Sending warning alert CloseNotify
[2026-04-28 12:54:50.143][response][INFO] (authorize) GET /identity/connect/authorize?<data..> => 307 Temporary Redirect
[2026-04-28 12:54:54.275][request][INFO] GET /identity/connect/oidc-signin?code=1.AUIAZu-**************
[2026-04-28 12:54:54.275][vaultwarden::api::identity][DEBUG] Redirection to bitwarden://sso-callback?code=********************************************************************************************
[2026-04-28 12:54:54.275][response][INFO] (oidcsignin) GET /identity/connect/oidc-signin?<code>&<state> => 307 Temporary Redirect
[2026-04-28 12:54:55.070][request][INFO] POST /identity/connect/token
[2026-04-28 12:54:55.073][reqwest::connect][DEBUG] starting new connection: https://login.microsoftonline.com/
[2026-04-28 12:54:55.076][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443
[2026-04-28 12:54:55.076][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443
[2026-04-28 12:54:55.076][rustls::client::hs][DEBUG] No cached session for DnsName("login.microsoftonline.com")
[2026-04-28 12:54:55.076][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:54:58.355][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384
[2026-04-28 12:54:58.355][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:54:58.747][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. }
[2026-04-28 12:54:58.747][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2")
[2026-04-28 12:54:58.747][h2::client][DEBUG] binding client connection
[2026-04-28 12:54:58.747][h2::client][DEBUG] client connection bound
[2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:54:58.747][h2::proto::connection][DEBUG] Connection; peer=Client
[2026-04-28 12:54:58.747][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", login.microsoftonline.com)
[2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 }
[2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:54:58.843][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 }
[2026-04-28 12:54:58.843][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:54:58.843][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 }
[2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:54:59.050][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) }
[2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:54:59.050][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com)
[2026-04-28 12:54:59.050][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(3), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(3), flags: (0x4: END_HEADERS) }
[2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3) }
[2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3), flags: (0x1: END_STREAM) }
[2026-04-28 12:54:59.350][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com)
[2026-04-28 12:54:59.350][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(5), flags: (0x4: END_HEADERS) }
[2026-04-28 12:54:59.350][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(5), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(5), flags: (0x4: END_HEADERS) }
[2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(5) }
[2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(5), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:00.135][reqwest::connect][DEBUG] starting new connection: https://graph.microsoft.com/
[2026-04-28 12:55:00.137][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443
[2026-04-28 12:55:00.138][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443
[2026-04-28 12:55:00.138][rustls::client::hs][DEBUG] No cached session for DnsName("graph.microsoft.com")
[2026-04-28 12:55:00.138][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:55:00.486][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384
[2026-04-28 12:55:00.486][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:55:00.623][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. }
[2026-04-28 12:55:00.623][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2")
[2026-04-28 12:55:00.623][h2::client][DEBUG] binding client connection
[2026-04-28 12:55:00.623][h2::client][DEBUG] client connection bound
[2026-04-28 12:55:00.623][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:00.623][h2::proto::connection][DEBUG] Connection; peer=Client
[2026-04-28 12:55:00.623][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", graph.microsoft.com)
[2026-04-28 12:55:00.623][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 }
[2026-04-28 12:55:00.624][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:55:00.734][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 }
[2026-04-28 12:55:00.734][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:00.734][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 }
[2026-04-28 12:55:00.735][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:00.735][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) }
[2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) }
[2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) }
[2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:00.947][vaultwarden::sso][DEBUG] Authenticated user OIDCAuthenticatedUser { refresh_token: Some("**************"), access_token: "**************", expires_in: Some(4831s), identifier: OIDCIdentifier("https://login.microsoftonline.com/4c80ef66-383f-4189-85f6-**************/v2.0/**************"), email: "test@example.com", email_verified: None, user_name: Some("test@example.com") }
[2026-04-28 12:55:00.947][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) }
[2026-04-28 12:55:00.947][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library)
[2026-04-28 12:55:00.947][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) }
[2026-04-28 12:55:00.947][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library)
[2026-04-28 12:55:00.947][rustls::common_state][DEBUG] Sending warning alert CloseNotify
[2026-04-28 12:55:00.947][rustls::common_state][DEBUG] Sending warning alert CloseNotify
[2026-04-28 12:55:00.948][vaultwarden::sso][DEBUG] Non jwt refresh_token (expiration set to 1779972900)
[2026-04-28 12:55:00.948][vaultwarden::api::push][WARN] Skipping the registration of the device DeviceId("9787cb3c-5fd3-4aa0-86db-**************") because the push_token field is empty.
[2026-04-28 12:55:00.948][vaultwarden::api::push][WARN] To get rid of this message you need to logout, clear the app data and login again on the device.
[2026-04-28 12:55:00.950][vaultwarden::api::identity][INFO] User test@example.com logged in successfully. IP: xx.xx.xx.xx
[2026-04-28 12:55:00.950][response][INFO] (login) POST /identity/connect/token => 200 OK
[2026-04-28 12:55:01.237][request][INFO] GET /notifications/hub?access_token=**************
[2026-04-28 12:55:01.237][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from xx.xx.xx.xx
[2026-04-28 12:55:01.237][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2026-04-28 12:55:01.297][request][INFO] PUT /api/devices/identifier/9787cb3c-5fd3-4aa0-86db-**************/token
[2026-04-28 12:55:01.298][vaultwarden::api::push][DEBUG] Registering Device Some(PushId("c426cf90-4af0-405a-bc43-**************"))
[2026-04-28 12:55:01.304][reqwest::connect][DEBUG] starting new connection: https://identity.bitwarden.com/
[2026-04-28 12:55:01.304][hickory_net::xfer::dns_handle][DEBUG] querying: identity.bitwarden.com. A
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("identity.bitwarden.com."), query_type: A, query_class: IN }]
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=identity.bitwarden.com. IN A
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=33µs ip=127.0.0.11
[2026-04-28 12:55:01.304][hickory_resolver::name_server][DEBUG] connecting config=NameServerConfig { ip: 127.0.0.11, trust_negative_responses: true, connections: [ConnectionConfig { port: 53, protocol: Udp, bind_addr: None }, ConnectionConfig { port: 53, protocol: Tcp, bind_addr: None }] }
[2026-04-28 12:55:01.304][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("identity.bitwarden.com."), query_type: A, query_class: IN }]
[2026-04-28 12:55:01.304][hickory_net::xfer::dns_handle][DEBUG] querying: identity.bitwarden.com. AAAA
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN }]
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=identity.bitwarden.com. IN AAAA
[2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=33µs ip=127.0.0.11
[2026-04-28 12:55:01.304][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN }]
[2026-04-28 12:55:01.304][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 7128:QUERY:RD:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0
; query
;; identity.bitwarden.com. IN A

[2026-04-28 12:55:01.304][hickory_net::udp::udp_stream][DEBUG] created socket successfully
[2026-04-28 12:55:01.304][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 61553:QUERY:RD:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0
; query
;; identity.bitwarden.com. IN AAAA

[2026-04-28 12:55:01.304][hickory_net::udp::udp_stream][DEBUG] created socket successfully
[2026-04-28 12:55:01.305][hickory_net::udp::udp_client_stream][DEBUG] received message id: 61553
[2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 61553:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; identity.bitwarden.com. IN AAAA
; answers 0
; authorities 0
; additionals 0

[2026-04-28 12:55:01.305][hickory_net::udp::udp_client_stream][DEBUG] received message id: 7128
[2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 7128:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; identity.bitwarden.com. IN A
; answers 2
identity.bitwarden.com. 1 IN CNAME mbz100.bitwarden.map.fastly.net.
mbz100.bitwarden.map.fastly.net. 1 IN A xx.xx.xx.xx
; authorities 0
; additionals 0

[2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 7128:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; identity.bitwarden.com. IN A
; answers 2
identity.bitwarden.com. 1 IN CNAME mbz100.bitwarden.map.fastly.net.
mbz100.bitwarden.map.fastly.net. 1 IN A xx.xx.xx.xx
; authorities 0
; additionals 0

[2026-04-28 12:55:01.305][hickory_resolver::lookup_ip][DEBUG] one of ipv4 or ipv6 lookup failed: DNS error: no records found for Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN }
[2026-04-28 12:55:01.305][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443
[2026-04-28 12:55:01.306][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443
[2026-04-28 12:55:01.306][rustls::client::hs][DEBUG] No cached session for DnsName("identity.bitwarden.com")
[2026-04-28 12:55:01.306][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:55:01.427][request][INFO] GET /api/sync
[2026-04-28 12:55:01.429][response][INFO] (sync) GET /api/sync?<data..> => 200 OK
[2026-04-28 12:55:02.011][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_128_GCM_SHA256
[2026-04-28 12:55:02.011][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:55:02.011][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. }
[2026-04-28 12:55:02.011][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2")
[2026-04-28 12:55:02.011][h2::client][DEBUG] binding client connection
[2026-04-28 12:55:02.011][h2::client][DEBUG] client connection bound
[2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:02.011][h2::proto::connection][DEBUG] Connection; peer=Client
[2026-04-28 12:55:02.011][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", identity.bitwarden.com)
[2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 }
[2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100 }
[2026-04-28 12:55:02.314][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 16711681 }
[2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:02.314][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:02.482][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:55:02.482][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:02.482][vaultwarden::api::push][DEBUG] Token still valid for 43199
[2026-04-28 12:55:02.482][reqwest::connect][DEBUG] starting new connection: https://push.bitwarden.com/
[2026-04-28 12:55:02.482][hickory_net::xfer::dns_handle][DEBUG] querying: push.bitwarden.com. A
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("push.bitwarden.com."), query_type: A, query_class: IN }]
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=push.bitwarden.com. IN A
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=128.654ms ip=127.0.0.11
[2026-04-28 12:55:02.482][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("push.bitwarden.com."), query_type: A, query_class: IN }]
[2026-04-28 12:55:02.482][hickory_net::xfer::dns_handle][DEBUG] querying: push.bitwarden.com. AAAA
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN }]
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=push.bitwarden.com. IN AAAA
[2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=128.654ms ip=127.0.0.11
[2026-04-28 12:55:02.482][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN }]
[2026-04-28 12:55:02.482][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 10741:QUERY:RD:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0
; query
;; push.bitwarden.com. IN A

[2026-04-28 12:55:02.482][hickory_net::udp::udp_stream][DEBUG] created socket successfully
[2026-04-28 12:55:02.482][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 26818:QUERY:RD:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0
; query
;; push.bitwarden.com. IN AAAA

[2026-04-28 12:55:02.482][hickory_net::udp::udp_stream][DEBUG] created socket successfully
[2026-04-28 12:55:02.484][hickory_net::udp::udp_client_stream][DEBUG] received message id: 26818
[2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 26818:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; push.bitwarden.com. IN AAAA
; answers 0
; authorities 0
; additionals 0

[2026-04-28 12:55:02.484][hickory_net::udp::udp_client_stream][DEBUG] received message id: 10741
[2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 10741:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; push.bitwarden.com. IN A
; answers 2
push.bitwarden.com. 1 IN CNAME dualstack.n.sni.us-eu.fastly.net.
dualstack.n.sni.us-eu.fastly.net. 1 IN A 146.75.93.91
; authorities 0
; additionals 0

[2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 10741:RESPONSE:RD,RA:NoError:QUERY
; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0
; query
;; push.bitwarden.com. IN A
; answers 2
push.bitwarden.com. 1 IN CNAME dualstack.n.sni.us-eu.fastly.net.
dualstack.n.sni.us-eu.fastly.net. 1 IN A 146.75.93.91
; authorities 0
; additionals 0

[2026-04-28 12:55:02.484][hickory_resolver::lookup_ip][DEBUG] one of ipv4 or ipv6 lookup failed: DNS error: no records found for Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN }
[2026-04-28 12:55:02.484][hyper_util::client::legacy::connect::http][DEBUG] connecting to 146.75.93.91:443
[2026-04-28 12:55:02.485][hyper_util::client::legacy::connect::http][DEBUG] connected to 146.75.93.91:443
[2026-04-28 12:55:02.485][rustls::client::hs][DEBUG] No cached session for DnsName("push.bitwarden.com")
[2026-04-28 12:55:02.485][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:55:03.104][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_128_GCM_SHA256
[2026-04-28 12:55:03.104][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:55:03.104][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. }
[2026-04-28 12:55:03.104][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2")
[2026-04-28 12:55:03.286][h2::client][DEBUG] binding client connection
[2026-04-28 12:55:03.286][h2::client][DEBUG] client connection bound
[2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:03.286][h2::proto::connection][DEBUG] Connection; peer=Client
[2026-04-28 12:55:03.286][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", push.bitwarden.com)
[2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 }
[2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) }
[2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) }
[2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100 }
[2026-04-28 12:55:03.584][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 16711681 }
[2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) }
[2026-04-28 12:55:03.584][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 }
[2026-04-28 12:55:04.146][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) }
[2026-04-28 12:55:04.147][response][INFO] (put_device_token) PUT /api/devices/identifier/<device_id>/token => 200 OK
[2026-04-28 12:55:32.400][vaultwarden::api::core::two_factor][DEBUG] Sending notifications for incomplete 2FA logins
[2026-04-28 12:55:32.400][vaultwarden::api::core::two_factor::duo_oidc][DEBUG] Purging Duo authentication contexts
[2026-04-28 12:55:32.400][vaultwarden::api::core::accounts][DEBUG] Purging auth requests
[2026-04-28 12:55:32.524][request][INFO] GET /alive
[2026-04-28 12:55:32.525][response][INFO] (alive) GET /alive => 200 OK
[2026-04-28 12:55:43.554][request][INFO] POST /api/accounts/set-password
[2026-04-28 12:55:43.662][rustls::webpki::anchors][DEBUG] add_parsable_certificates processed 150 valid and 0 invalid certs
[2026-04-28 12:55:49.352][rustls::client::hs][DEBUG] No cached session for DnsName("email-smtp.ap-northeast-1.amazonaws.com")
[2026-04-28 12:55:49.352][rustls::client::hs][DEBUG] Not resuming any session
[2026-04-28 12:55:49.585][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384
[2026-04-28 12:55:49.585][rustls::client::tls13][DEBUG] Not resuming
[2026-04-28 12:55:49.585][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { unknown_extensions: {10}, .. }
[2026-04-28 12:55:49.585][rustls::client::hs][DEBUG] ALPN protocol is None
[2026-04-28 12:55:54.960][rustls::common_state][DEBUG] Sending warning alert CloseNotify
[2026-04-28 12:55:54.961][response][INFO] (post_set_password) POST /api/accounts/set-password => 200 OK

Hope it helps, but I think it's more about the client side. I didn't notice any errors on the server. This issue has bothered me for couple of versions so far. Is it possible that vaultwarden is not responding with complete fields like mobile client expected?

<!-- gh-comment-id:4335611430 --> @axyn45 commented on GitHub (Apr 28, 2026): <details> <summary>Click to expand</summary> ```log [2026-04-28 12:54:47.556][request][INFO] POST /api/organizations/domain/sso/verified [2026-04-28 12:54:47.557][response][INFO] (get_org_domain_sso_verified) POST /api/organizations/domain/sso/verified => 200 OK [2026-04-28 12:54:47.905][request][INFO] GET /identity/sso/prevalidate?domainHint=vaultwarden-dummy-o [2026-04-28 12:54:47.906][response][INFO] (prevalidate) GET /identity/sso/prevalidate => 200 OK [2026-04-28 12:54:48.725][request][INFO] GET /identity/connect/authorize?client_id=mobile&redirect_uri= [2026-04-28 12:54:48.729][reqwest::connect][DEBUG] starting new connection: https://login.microsoftonline.com/ [2026-04-28 12:54:48.731][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443 [2026-04-28 12:54:48.731][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443 [2026-04-28 12:54:48.731][rustls::client::hs][DEBUG] No cached session for DnsName("login.microsoftonline.com") [2026-04-28 12:54:48.731][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:54:49.128][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384 [2026-04-28 12:54:49.128][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:54:49.558][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. } [2026-04-28 12:54:49.558][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2") [2026-04-28 12:54:49.559][h2::client][DEBUG] binding client connection [2026-04-28 12:54:49.559][h2::client][DEBUG] client connection bound [2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:54:49.559][h2::proto::connection][DEBUG] Connection; peer=Client [2026-04-28 12:54:49.559][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", login.microsoftonline.com) [2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 } [2026-04-28 12:54:49.559][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 } [2026-04-28 12:54:49.913][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:54:49.913][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) } [2026-04-28 12:54:49.913][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:54:49.914][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com) [2026-04-28 12:54:49.914][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(3), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(3), flags: (0x4: END_HEADERS) } [2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3) } [2026-04-28 12:54:50.142][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3), flags: (0x1: END_STREAM) } [2026-04-28 12:54:50.142][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) } [2026-04-28 12:54:50.142][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library) [2026-04-28 12:54:50.142][rustls::common_state][DEBUG] Sending warning alert CloseNotify [2026-04-28 12:54:50.143][response][INFO] (authorize) GET /identity/connect/authorize?<data..> => 307 Temporary Redirect [2026-04-28 12:54:54.275][request][INFO] GET /identity/connect/oidc-signin?code=1.AUIAZu-************** [2026-04-28 12:54:54.275][vaultwarden::api::identity][DEBUG] Redirection to bitwarden://sso-callback?code=******************************************************************************************** [2026-04-28 12:54:54.275][response][INFO] (oidcsignin) GET /identity/connect/oidc-signin?<code>&<state> => 307 Temporary Redirect [2026-04-28 12:54:55.070][request][INFO] POST /identity/connect/token [2026-04-28 12:54:55.073][reqwest::connect][DEBUG] starting new connection: https://login.microsoftonline.com/ [2026-04-28 12:54:55.076][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443 [2026-04-28 12:54:55.076][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443 [2026-04-28 12:54:55.076][rustls::client::hs][DEBUG] No cached session for DnsName("login.microsoftonline.com") [2026-04-28 12:54:55.076][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:54:58.355][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384 [2026-04-28 12:54:58.355][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:54:58.747][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. } [2026-04-28 12:54:58.747][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2") [2026-04-28 12:54:58.747][h2::client][DEBUG] binding client connection [2026-04-28 12:54:58.747][h2::client][DEBUG] client connection bound [2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:54:58.747][h2::proto::connection][DEBUG] Connection; peer=Client [2026-04-28 12:54:58.747][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", login.microsoftonline.com) [2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 } [2026-04-28 12:54:58.747][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:54:58.843][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 } [2026-04-28 12:54:58.843][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:54:58.843][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 } [2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:54:59.050][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) } [2026-04-28 12:54:59.050][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:54:59.050][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com) [2026-04-28 12:54:59.050][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(3), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(3), flags: (0x4: END_HEADERS) } [2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3) } [2026-04-28 12:54:59.350][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(3), flags: (0x1: END_STREAM) } [2026-04-28 12:54:59.350][hyper_util::client::legacy::pool][DEBUG] reuse idle connection for ("https", login.microsoftonline.com) [2026-04-28 12:54:59.350][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(5), flags: (0x4: END_HEADERS) } [2026-04-28 12:54:59.350][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(5), flags: (0x1: END_STREAM) } [2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(5), flags: (0x4: END_HEADERS) } [2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(5) } [2026-04-28 12:55:00.135][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(5), flags: (0x1: END_STREAM) } [2026-04-28 12:55:00.135][reqwest::connect][DEBUG] starting new connection: https://graph.microsoft.com/ [2026-04-28 12:55:00.137][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443 [2026-04-28 12:55:00.138][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443 [2026-04-28 12:55:00.138][rustls::client::hs][DEBUG] No cached session for DnsName("graph.microsoft.com") [2026-04-28 12:55:00.138][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:55:00.486][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384 [2026-04-28 12:55:00.486][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:55:00.623][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. } [2026-04-28 12:55:00.623][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2") [2026-04-28 12:55:00.623][h2::client][DEBUG] binding client connection [2026-04-28 12:55:00.623][h2::client][DEBUG] client connection bound [2026-04-28 12:55:00.623][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:00.623][h2::proto::connection][DEBUG] Connection; peer=Client [2026-04-28 12:55:00.623][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", graph.microsoft.com) [2026-04-28 12:55:00.623][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 } [2026-04-28 12:55:00.624][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:55:00.734][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100, initial_window_size: 1048576 } [2026-04-28 12:55:00.734][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:00.734][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 983041 } [2026-04-28 12:55:00.735][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:00.735][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) } [2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) } [2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1) } [2026-04-28 12:55:00.946][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:55:00.947][vaultwarden::sso][DEBUG] Authenticated user OIDCAuthenticatedUser { refresh_token: Some("**************"), access_token: "**************", expires_in: Some(4831s), identifier: OIDCIdentifier("https://login.microsoftonline.com/4c80ef66-383f-4189-85f6-**************/v2.0/**************"), email: "test@example.com", email_verified: None, user_name: Some("test@example.com") } [2026-04-28 12:55:00.947][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) } [2026-04-28 12:55:00.947][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library) [2026-04-28 12:55:00.947][h2::codec::framed_write][DEBUG] send frame=GoAway { error_code: NO_ERROR, last_stream_id: StreamId(0) } [2026-04-28 12:55:00.947][h2::proto::connection][DEBUG] Connection::poll; connection error error=GoAway(b"", NO_ERROR, Library) [2026-04-28 12:55:00.947][rustls::common_state][DEBUG] Sending warning alert CloseNotify [2026-04-28 12:55:00.947][rustls::common_state][DEBUG] Sending warning alert CloseNotify [2026-04-28 12:55:00.948][vaultwarden::sso][DEBUG] Non jwt refresh_token (expiration set to 1779972900) [2026-04-28 12:55:00.948][vaultwarden::api::push][WARN] Skipping the registration of the device DeviceId("9787cb3c-5fd3-4aa0-86db-**************") because the push_token field is empty. [2026-04-28 12:55:00.948][vaultwarden::api::push][WARN] To get rid of this message you need to logout, clear the app data and login again on the device. [2026-04-28 12:55:00.950][vaultwarden::api::identity][INFO] User test@example.com logged in successfully. IP: xx.xx.xx.xx [2026-04-28 12:55:00.950][response][INFO] (login) POST /identity/connect/token => 200 OK [2026-04-28 12:55:01.237][request][INFO] GET /notifications/hub?access_token=************** [2026-04-28 12:55:01.237][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from xx.xx.xx.xx [2026-04-28 12:55:01.237][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2026-04-28 12:55:01.297][request][INFO] PUT /api/devices/identifier/9787cb3c-5fd3-4aa0-86db-**************/token [2026-04-28 12:55:01.298][vaultwarden::api::push][DEBUG] Registering Device Some(PushId("c426cf90-4af0-405a-bc43-**************")) [2026-04-28 12:55:01.304][reqwest::connect][DEBUG] starting new connection: https://identity.bitwarden.com/ [2026-04-28 12:55:01.304][hickory_net::xfer::dns_handle][DEBUG] querying: identity.bitwarden.com. A [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("identity.bitwarden.com."), query_type: A, query_class: IN }] [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=identity.bitwarden.com. IN A [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=33µs ip=127.0.0.11 [2026-04-28 12:55:01.304][hickory_resolver::name_server][DEBUG] connecting config=NameServerConfig { ip: 127.0.0.11, trust_negative_responses: true, connections: [ConnectionConfig { port: 53, protocol: Udp, bind_addr: None }, ConnectionConfig { port: 53, protocol: Tcp, bind_addr: None }] } [2026-04-28 12:55:01.304][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("identity.bitwarden.com."), query_type: A, query_class: IN }] [2026-04-28 12:55:01.304][hickory_net::xfer::dns_handle][DEBUG] querying: identity.bitwarden.com. AAAA [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN }] [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=identity.bitwarden.com. IN AAAA [2026-04-28 12:55:01.304][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=33µs ip=127.0.0.11 [2026-04-28 12:55:01.304][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN }] [2026-04-28 12:55:01.304][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 7128:QUERY:RD:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0 ; query ;; identity.bitwarden.com. IN A [2026-04-28 12:55:01.304][hickory_net::udp::udp_stream][DEBUG] created socket successfully [2026-04-28 12:55:01.304][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 61553:QUERY:RD:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0 ; query ;; identity.bitwarden.com. IN AAAA [2026-04-28 12:55:01.304][hickory_net::udp::udp_stream][DEBUG] created socket successfully [2026-04-28 12:55:01.305][hickory_net::udp::udp_client_stream][DEBUG] received message id: 61553 [2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 61553:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; identity.bitwarden.com. IN AAAA ; answers 0 ; authorities 0 ; additionals 0 [2026-04-28 12:55:01.305][hickory_net::udp::udp_client_stream][DEBUG] received message id: 7128 [2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 7128:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; identity.bitwarden.com. IN A ; answers 2 identity.bitwarden.com. 1 IN CNAME mbz100.bitwarden.map.fastly.net. mbz100.bitwarden.map.fastly.net. 1 IN A xx.xx.xx.xx ; authorities 0 ; additionals 0 [2026-04-28 12:55:01.305][hickory_net::error][DEBUG] response: ; header 7128:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; identity.bitwarden.com. IN A ; answers 2 identity.bitwarden.com. 1 IN CNAME mbz100.bitwarden.map.fastly.net. mbz100.bitwarden.map.fastly.net. 1 IN A xx.xx.xx.xx ; authorities 0 ; additionals 0 [2026-04-28 12:55:01.305][hickory_resolver::lookup_ip][DEBUG] one of ipv4 or ipv6 lookup failed: DNS error: no records found for Query { name: Name("identity.bitwarden.com."), query_type: AAAA, query_class: IN } [2026-04-28 12:55:01.305][hyper_util::client::legacy::connect::http][DEBUG] connecting to xx.xx.xx.xx:443 [2026-04-28 12:55:01.306][hyper_util::client::legacy::connect::http][DEBUG] connected to xx.xx.xx.xx:443 [2026-04-28 12:55:01.306][rustls::client::hs][DEBUG] No cached session for DnsName("identity.bitwarden.com") [2026-04-28 12:55:01.306][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:55:01.427][request][INFO] GET /api/sync [2026-04-28 12:55:01.429][response][INFO] (sync) GET /api/sync?<data..> => 200 OK [2026-04-28 12:55:02.011][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_128_GCM_SHA256 [2026-04-28 12:55:02.011][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:55:02.011][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. } [2026-04-28 12:55:02.011][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2") [2026-04-28 12:55:02.011][h2::client][DEBUG] binding client connection [2026-04-28 12:55:02.011][h2::client][DEBUG] client connection bound [2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:02.011][h2::proto::connection][DEBUG] Connection; peer=Client [2026-04-28 12:55:02.011][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", identity.bitwarden.com) [2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 } [2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:55:02.011][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100 } [2026-04-28 12:55:02.314][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 16711681 } [2026-04-28 12:55:02.314][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:02.314][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:02.482][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:55:02.482][h2::codec::framed_read][DEBUG] received frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:55:02.482][vaultwarden::api::push][DEBUG] Token still valid for 43199 [2026-04-28 12:55:02.482][reqwest::connect][DEBUG] starting new connection: https://push.bitwarden.com/ [2026-04-28 12:55:02.482][hickory_net::xfer::dns_handle][DEBUG] querying: push.bitwarden.com. A [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("push.bitwarden.com."), query_type: A, query_class: IN }] [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=push.bitwarden.com. IN A [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=128.654ms ip=127.0.0.11 [2026-04-28 12:55:02.482][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("push.bitwarden.com."), query_type: A, query_class: IN }] [2026-04-28 12:55:02.482][hickory_net::xfer::dns_handle][DEBUG] querying: push.bitwarden.com. AAAA [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] sending request: [Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN }] [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] creating new shared lookup query=push.bitwarden.com. IN AAAA [2026-04-28 12:55:02.482][hickory_resolver::name_server_pool][DEBUG] setting retry_interval retry_interval=128.654ms ip=127.0.0.11 [2026-04-28 12:55:02.482][hickory_net::xfer][DEBUG] enqueueing message:QUERY:[Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN }] [2026-04-28 12:55:02.482][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 10741:QUERY:RD:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0 ; query ;; push.bitwarden.com. IN A [2026-04-28 12:55:02.482][hickory_net::udp::udp_stream][DEBUG] created socket successfully [2026-04-28 12:55:02.482][hickory_net::udp::udp_client_stream][DEBUG] final message final_message=; header 26818:QUERY:RD:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 1232 opts: 0 ; query ;; push.bitwarden.com. IN AAAA [2026-04-28 12:55:02.482][hickory_net::udp::udp_stream][DEBUG] created socket successfully [2026-04-28 12:55:02.484][hickory_net::udp::udp_client_stream][DEBUG] received message id: 26818 [2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 26818:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; push.bitwarden.com. IN AAAA ; answers 0 ; authorities 0 ; additionals 0 [2026-04-28 12:55:02.484][hickory_net::udp::udp_client_stream][DEBUG] received message id: 10741 [2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 10741:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; push.bitwarden.com. IN A ; answers 2 push.bitwarden.com. 1 IN CNAME dualstack.n.sni.us-eu.fastly.net. dualstack.n.sni.us-eu.fastly.net. 1 IN A 146.75.93.91 ; authorities 0 ; additionals 0 [2026-04-28 12:55:02.484][hickory_net::error][DEBUG] response: ; header 10741:RESPONSE:RD,RA:NoError:QUERY ; edns version: 0 dnssec_ok: false z_flags: 0 max_payload: 65494 opts: 0 ; query ;; push.bitwarden.com. IN A ; answers 2 push.bitwarden.com. 1 IN CNAME dualstack.n.sni.us-eu.fastly.net. dualstack.n.sni.us-eu.fastly.net. 1 IN A 146.75.93.91 ; authorities 0 ; additionals 0 [2026-04-28 12:55:02.484][hickory_resolver::lookup_ip][DEBUG] one of ipv4 or ipv6 lookup failed: DNS error: no records found for Query { name: Name("push.bitwarden.com."), query_type: AAAA, query_class: IN } [2026-04-28 12:55:02.484][hyper_util::client::legacy::connect::http][DEBUG] connecting to 146.75.93.91:443 [2026-04-28 12:55:02.485][hyper_util::client::legacy::connect::http][DEBUG] connected to 146.75.93.91:443 [2026-04-28 12:55:02.485][rustls::client::hs][DEBUG] No cached session for DnsName("push.bitwarden.com") [2026-04-28 12:55:02.485][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:55:03.104][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_128_GCM_SHA256 [2026-04-28 12:55:03.104][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:55:03.104][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { server_name_ack: (), selected_protocol: SingleProtocolName(ProtocolName(6832)), unknown_extensions: {}, .. } [2026-04-28 12:55:03.104][rustls::client::hs][DEBUG] ALPN protocol is Some(b"h2") [2026-04-28 12:55:03.286][h2::client][DEBUG] binding client connection [2026-04-28 12:55:03.286][h2::client][DEBUG] client connection bound [2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:03.286][h2::proto::connection][DEBUG] Connection; peer=Client [2026-04-28 12:55:03.286][hyper_util::client::legacy::pool][DEBUG] pooling idle connection for ("https", push.bitwarden.com) [2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=WindowUpdate { stream_id: StreamId(0), size_increment: 5177345 } [2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Headers { stream_id: StreamId(1), flags: (0x4: END_HEADERS) } [2026-04-28 12:55:03.286][h2::codec::framed_write][DEBUG] send frame=Data { stream_id: StreamId(1), flags: (0x1: END_STREAM) } [2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x0), max_concurrent_streams: 100 } [2026-04-28 12:55:03.584][h2::codec::framed_write][DEBUG] send frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=WindowUpdate { stream_id: StreamId(0), size_increment: 16711681 } [2026-04-28 12:55:03.584][h2::codec::framed_read][DEBUG] received frame=Settings { flags: (0x1: ACK) } [2026-04-28 12:55:03.584][h2::proto::settings][DEBUG] received settings ACK; applying Settings { flags: (0x0), enable_push: 0, initial_window_size: 2097152, max_frame_size: 16384, max_header_list_size: 16384 } [2026-04-28 12:55:04.146][h2::codec::framed_read][DEBUG] received frame=Headers { stream_id: StreamId(1), flags: (0x5: END_HEADERS | END_STREAM) } [2026-04-28 12:55:04.147][response][INFO] (put_device_token) PUT /api/devices/identifier/<device_id>/token => 200 OK [2026-04-28 12:55:32.400][vaultwarden::api::core::two_factor][DEBUG] Sending notifications for incomplete 2FA logins [2026-04-28 12:55:32.400][vaultwarden::api::core::two_factor::duo_oidc][DEBUG] Purging Duo authentication contexts [2026-04-28 12:55:32.400][vaultwarden::api::core::accounts][DEBUG] Purging auth requests [2026-04-28 12:55:32.524][request][INFO] GET /alive [2026-04-28 12:55:32.525][response][INFO] (alive) GET /alive => 200 OK [2026-04-28 12:55:43.554][request][INFO] POST /api/accounts/set-password [2026-04-28 12:55:43.662][rustls::webpki::anchors][DEBUG] add_parsable_certificates processed 150 valid and 0 invalid certs [2026-04-28 12:55:49.352][rustls::client::hs][DEBUG] No cached session for DnsName("email-smtp.ap-northeast-1.amazonaws.com") [2026-04-28 12:55:49.352][rustls::client::hs][DEBUG] Not resuming any session [2026-04-28 12:55:49.585][rustls::client::hs][DEBUG] Using ciphersuite TLS13_AES_256_GCM_SHA384 [2026-04-28 12:55:49.585][rustls::client::tls13][DEBUG] Not resuming [2026-04-28 12:55:49.585][rustls::client::tls13][DEBUG] TLS1.3 encrypted extensions: ServerExtensions { unknown_extensions: {10}, .. } [2026-04-28 12:55:49.585][rustls::client::hs][DEBUG] ALPN protocol is None [2026-04-28 12:55:54.960][rustls::common_state][DEBUG] Sending warning alert CloseNotify [2026-04-28 12:55:54.961][response][INFO] (post_set_password) POST /api/accounts/set-password => 200 OK ``` </details> Hope it helps, but I think it's more about the client side. I didn't notice any errors on the server. This issue has bothered me for couple of versions so far. Is it possible that vaultwarden is not responding with complete fields like mobile client expected?
Author
Owner

@BlackDex commented on GitHub (Apr 30, 2026):

Looks like i receive the same error if i use an older Bitwarden Self-Hosted.
I think i know what to do to fix this though, but i have to look it up

Scratch that. Looking at the code it doesn't look like the server side can do anything to resolve this.
As this is not something we can fix on our side I'm going to move this to discussions.

<!-- gh-comment-id:4351968940 --> @BlackDex commented on GitHub (Apr 30, 2026): Looks like i receive the same error if i use an older Bitwarden Self-Hosted. ~I think i know what to do to fix this though, but i have to look it up~ Scratch that. Looking at the code it doesn't look like the server side can do anything to resolve this. As this is not something we can fix on our side I'm going to move this to discussions.
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/vaultwarden#30119