I'm using OpenJDK 8 (downloaded and unzipped from https://jdk.java.net/java-se-ri/8, added to PATH), and I'm running into certificate errors.
Upon investigation, I realized there is a problem with cacerts.
Running keytool -list -keystore cacerts returns an error: keytool error: java.lang.Exception: Keystore file does not exist: cacerts,
but running keytool -list -keystore "C:\development\exec\cmd\jdk8\jre\lib\security\cacerts"
gets me a list of actual certificates. JAVA_HOME does point to
C:\development\exec\cmd\jdk8 and PATH does have an entry %JAVA_HOME%\bin. How should I configure java to look in the right place for cacerts?
java -version returns the following:
openjdk version "1.8.0_40"
OpenJDK Runtime Environment (build 1.8.0_40-b25)
OpenJDK Client VM (build 25.40-b25, mixed mode)
It looks like the question was based on an incorrect premise - there is no such thing as a default truststore location that keytool would look at, and it simply looks for the given file in the current directory.
I realized this after installing Oracle JDK 8 and repeating the previously described steps. I'd just never thought to run keytool from %JAVA_HOME%\jre\lib\security; I kept running it from the directory of a project whose build was failing due to repository connection errors. The actual problem I originally had was that the OpenJDK cacerts file was empty; I replaced it with cacerts taken from another JRE 8 installation, and never thought to retry the build after that.