I solved the problem:
in java.security file was a parameter
security.useSystemPropertiesFile=true
so a second file /etc/crypto-policies/back-ends/java.config was loaded and overrided the params in java.security
so i could set security.useSystemPropertiesFile to false or change
param
jdk.certpath.disabledAlgorithms
in file
/etc/crypto-policies/back-ends/java.config