Unable to read truststore error since macOS Sonar Scanner CLI since 7.0.0.4796

Julien_HENRY · February 11, 2025, 10:10am

@Fabrice_P Can you please run:

keytool -v -list -keystore /var/jenkins_cacerts/cacerts.jks

and check if you have entries that are different than trustedCertEntry

In my case, I have:

Type de fichier de clés : JKS
Fournisseur de fichier de clés : SUN

Votre fichier de clés d'accès contient 166 entrées

Nom d'alias : debian:ac_raiz_fnmt-rcm.pem
Date de création : 11 févr. 2025
Type d'entrée : trustedCertEntry
[...]

And all 166 entries are of type trustedCertEntry. I suspect there is something else in your cacerts that is causing the issue (for more technical details, see the issue I reported to BouncyCastle)

(If I could create a keystore reproducing your issue, that would be much simpler to fix it.)

Topic		Replies	Views
Sonar, java, certificates SonarQube Server / Community Build	5	2311	March 23, 2020
Upgrade scanner from `6.2.1.4610` to `7.0.0.4796` fail with `password supplied for keystore....` SonarQube Server / Community Build	3	337	January 22, 2025
Java Stack Trace Appears to be a Certificate Problem SonarQube Server / Community Build java , scanner , ssl	13	2346	June 19, 2020
SonarScanner error on the same machine i am hosting SonarQube from. java.lang.ExceptionInInitializerError SonarQube Server / Community Build sonarqube , scanner	19	4986	December 8, 2020
Sonar Scanner Cli downloading an unsupported java version SonarQube Server / Community Build scanner	3	2641	August 3, 2021

Unable to read truststore error since macOS Sonar Scanner CLI since 7.0.0.4796

Related topics