Recently we provisioned dev environments with _JAVA_OPTIONS=-Djavax.net.ssl.trustStoreType=Windows-ROOT
This way it is easier to maintain certificates, even if developers have multiple JDKs on their machine (they don’t need to import certificates in the truststore for every JDK).
However, it seems that Jetbrains products are bundled with a minimized JRE, not supporting this type.
For these products we want to provide the jvm option -Djavax.net.ssl.trustStoreType=jks, so it falls back to the default.
However, Sonarlint seems to use the same JRE as IntelliJ, starting a new one, missing these JVM options.
The result is an error:
Caused by: java.security.NoSuchAlgorithmException: Windows-ROOT KeyStore not available.
I’m looking for one of the following options:
- a way to overwrite the jvm property javax.net.ssl.trustStoreType
- assign a different jdk for Sonarlint