#26 Error while using timestamp server

open
nobody
5
2011-12-08
2011-12-08
Taylor Raack
No

I cannot use the timestamp server at http://www.trustcenter.de/codesigning/timestamp because an error occurred.

Here is the output from JSignPdf:

Starting JSignPdf
Checking input and output PDF paths.
Used key alias: 's COMODO CA Limited ID #2
Loading private key
Getting certificate chain
Opening input PDF file: xxxxx.pdf
Creating output PDF file: yyyyy.pdf
Creating signature
Setting certification level
Configuring visible signature
Use only layers recommend by Acrobat 6: true
Setting background image scale
Setting Layer 2 text (description)
Setting Layer 4 text (status)
Setting Render mode
Creating visible signature
Processing (it may take a while) ...
Reading CRLs
Reading CRL distribution points from certificate 1.2.840.113549.1.9.1=#160e74726161636b40636d752e656475
Found CRL URL in distribution point: http://crl.comodoca.com/COMODOClientAuthenticationandSecureEmailCA.crl
Reading CRL distribution points from certificate CN=COMODO Client Authentication and Secure Email CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB
Found CRL URL in distribution point: http://crl.usertrust.com/UTN-USERFirst-ClientAuthenticationandEmail.crl
Reading CRL distribution points from certificate CN=UTN-USERFirst-Client Authentication and Email,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US
Found CRL URL in distribution point: http://crl.usertrust.com/AddTrustExternalCARoot.crl
Reading CRL distribution points from certificate CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE
Distribution Points extension is not supported in given certificate.
Downloading CRL from http://crl.comodoca.com/COMODOClientAuthenticationandSecureEmailCA.crl
Size of downloaded CRL: 405902
Downloading CRL from http://crl.usertrust.com/UTN-USERFirst-ClientAuthenticationandEmail.crl
Size of downloaded CRL: 510436
Downloading CRL from http://crl.usertrust.com/AddTrustExternalCARoot.crl
Size of downloaded CRL: 494
Reading OCSP URL from certificate chain.
Getting OCSP data from URL: http://ocsp.comodoca.com
Creating TSA client.
Problem occured
ExceptionConverter: java.io.EOFException: DEF length 104 object truncated by 14
at org.bouncycastle.asn1.DefiniteLengthInputStream.toByteArray(Unknown Source)
at org.bouncycastle.asn1.ASN1InputStream.buildObject(Unknown Source)
at org.bouncycastle.asn1.ASN1InputStream.readObject(Unknown Source)
at org.bouncycastle.tsp.TimeStampResponse.readTimeStampResp(Unknown Source)
at org.bouncycastle.tsp.TimeStampResponse.<init>(Unknown Source)
at org.bouncycastle.tsp.TimeStampResponse.<init>(Unknown Source)
at com.lowagie.text.pdf.TSAClientBouncyCastle.getTimeStampToken(Unknown Source)
at com.lowagie.text.pdf.TSAClientBouncyCastle.getTimeStampToken(Unknown Source)
at com.lowagie.text.pdf.PdfPKCS7.getEncodedPKCS7(Unknown Source)
at net.sf.jsignpdf.SignerLogic.signFile(SignerLogic.java:300)
at net.sf.jsignpdf.SignerLogic.run(SignerLogic.java:77)
at java.lang.Thread.run(Thread.java:679)
Finished: Creating of signature failed.

I'm not totally sure that this is a bug or not. Either way, a human readable error message would be nice to tell the user exactly what went wrong and how to fix it.

Discussion