[GH-ISSUE #1025] Change Master Password with "encryption key rotation" fails (but password is changed) #723

New issue

Closed

opened 2026-03-03 02:02:34 +03:00 by kerem · 1 comment

kerem commented 2026-03-03 02:02:34 +03:00

Owner

Copy link

Originally created by @BlackDex on GitHub (Jun 7, 2020).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1025

Subject of the issue

When changing the master password and checking the "Also rotate my account's encryption key" causes an error 422 Unprocessable Entity.

Your environment

• Bitwarden_rs version: 1.15.0-db535118
• Install method: Build from source
• Clients used: web-vault
• Reverse proxy and version: n/a
• Version of mysql/postgresql: n/a
• Other relevant information:

Steps to reproduce

1. Go to your account settings in the web-vault
2. Scroll down to "Change Master Password"
3. Fill-in your current password and twice a new password.
4. Check "Also rotate my account's encryption key"
5. Click on the "Change Master Password" button.
6. See the error.
7. Returning to the vault looks like all is gone.
8. Logout and back in, entries are back again.

Expected behaviour

No errors

Actual behaviour

Error occurred and need to manually logout and back in again to see passwords.

Relevant logs

[2020-06-07 14:34:29][request][INFO] GET /api/sync?excludeDomains=true
[2020-06-07 14:34:29][response][INFO] GET /api/sync?<data..> (sync) => 200 OK
[2020-06-07 14:34:29][request][INFO] POST /api/accounts/password
[2020-06-07 14:34:30][response][INFO] POST /api/accounts/password (post_password) => 200 OK
[2020-06-07 14:34:35][request][INFO] POST /api/accounts/key
[2020-06-07 14:34:35][response][INFO] POST /api/accounts/key (post_rotatekey) => 422 Unprocessable Entity

Originally created by @BlackDex on GitHub (Jun 7, 2020). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1025 ### Subject of the issue When changing the master password and checking the "Also rotate my account's encryption key" causes an error `422 Unprocessable Entity`. ### Your environment * Bitwarden_rs version: 1.15.0-db535118 * Install method: Build from source * Clients used: web-vault * Reverse proxy and version: n/a * Version of mysql/postgresql: n/a * Other relevant information: ### Steps to reproduce 1. Go to your account settings in the web-vault 2. Scroll down to "Change Master Password" 3. Fill-in your current password and twice a new password. 4. Check "Also rotate my account's encryption key" 5. Click on the "Change Master Password" button. 6. See the error. 7. Returning to the vault looks like all is gone. 8. Logout and back in, entries are back again. ### Expected behaviour No errors ### Actual behaviour Error occurred and need to manually logout and back in again to see passwords. ### Relevant logs ``` [2020-06-07 14:34:29][request][INFO] GET /api/sync?excludeDomains=true [2020-06-07 14:34:29][response][INFO] GET /api/sync?<data..> (sync) => 200 OK [2020-06-07 14:34:29][request][INFO] POST /api/accounts/password [2020-06-07 14:34:30][response][INFO] POST /api/accounts/password (post_password) => 200 OK [2020-06-07 14:34:35][request][INFO] POST /api/accounts/key [2020-06-07 14:34:35][response][INFO] POST /api/accounts/key (post_rotatekey) => 422 Unprocessable Entity ```

kerem closed this issue 2026-03-03 02:02:34 +03:00

kerem commented 2026-03-03 02:02:35 +03:00

Author

Owner

Copy link

@BlackDex commented on GitHub (Jun 7, 2020):

While fixing issue #1022 i encountered this problem.
It appears to happen after trying to clone an item with an attachment within an organization.
This created bogus empty password items which in turn caused issues during the key rotation.

The solution is to first remove these items from the vault and the trash folder before chaining the master password with key-rotation.

<!-- gh-comment-id:640242649 --> @BlackDex commented on GitHub (Jun 7, 2020): While fixing issue #1022 i encountered this problem. It appears to happen after trying to clone an item with an attachment within an organization. This created bogus empty password items which in turn caused issues during the key rotation. The solution is to first remove these items from the vault and the trash folder before chaining the master password with key-rotation.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

revert-7033-patch-1

cached-config-operations

test_dylint

1.35.7

1.35.6

1.35.5

1.35.4

1.35.3

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels   

SSO

  

Third party

  

better for forum

  

bug

  

bug

  

documentation

  

duplicate

  

enhancement

  

future Vault

  

future Vault

  

future Vault

  

good first issue

  

help wanted

  

low priority

  

notes

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

troubleshooting

  

wontfix

No labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

question

troubleshooting

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/vaultwarden#723

No description provided.