diff --git a/CHANGELOG.md b/CHANGELOG.md
index ad785d1..1b6cce3 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,17 @@
All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) and this project adheres to [Semantic Versioning](http://semver.org).
+## [v4.4.1](https://github.com/puppetlabs/puppetlabs-java_ks/tree/v4.4.1) (2022-11-21)
+
+[Full Changelog](https://github.com/puppetlabs/puppetlabs-java_ks/compare/v4.4.0...v4.4.1)
+
+### Fixed
+
+- \(CONT-186\) Set `-deststoretype` [\#418](https://github.com/puppetlabs/puppetlabs-java_ks/pull/418) ([david22swan](https://github.com/david22swan))
+- pdksync - \(CONT-189\) Remove support for RedHat6 / OracleLinux6 / Scientific6 [\#417](https://github.com/puppetlabs/puppetlabs-java_ks/pull/417) ([david22swan](https://github.com/david22swan))
+- pdksync - \(CONT-130\) - Dropping Support for Debian 9 [\#414](https://github.com/puppetlabs/puppetlabs-java_ks/pull/414) ([jordanbreen28](https://github.com/jordanbreen28))
+- reversed insync set comparison [\#412](https://github.com/puppetlabs/puppetlabs-java_ks/pull/412) ([rstuart-indue](https://github.com/rstuart-indue))
+
## [v4.4.0](https://github.com/puppetlabs/puppetlabs-java_ks/tree/v4.4.0) (2022-10-03)
[Full Changelog](https://github.com/puppetlabs/puppetlabs-java_ks/compare/v4.3.1...v4.4.0)
diff --git a/REFERENCE.md b/REFERENCE.md
index 044743b..a4bbb8e 100644
--- a/REFERENCE.md
+++ b/REFERENCE.md
@@ -6,7 +6,7 @@
### Classes
-* [`java_ks::config`](#java_ksconfig): java_ks configuration
+* [`java_ks::config`](#java_ks--config): java_ks configuration
### Resource types
@@ -14,7 +14,7 @@
## Classes
-### `java_ks::config`
+### `java_ks::config`
java_ks configuration
@@ -22,9 +22,9 @@ java_ks configuration
The following parameters are available in the `java_ks::config` class:
-* [`params`](#params)
+* [`params`](#-java_ks--config--params)
-##### `params`
+##### `params`
Data type: `Any`
@@ -65,78 +65,78 @@ together with :password_file, but you must pass at least one of these parameters
The following parameters are available in the `java_ks` type.
-* [`certificate`](#certificate)
-* [`certificate_content`](#certificate_content)
-* [`chain`](#chain)
-* [`destkeypass`](#destkeypass)
-* [`keytool_timeout`](#keytool_timeout)
-* [`name`](#name)
-* [`password_fail_reset`](#password_fail_reset)
-* [`password_file`](#password_file)
-* [`path`](#path)
-* [`private_key`](#private_key)
-* [`private_key_content`](#private_key_content)
-* [`private_key_type`](#private_key_type)
-* [`provider`](#provider)
-* [`source_alias`](#source_alias)
-* [`source_password`](#source_password)
-* [`storetype`](#storetype)
-* [`target`](#target)
-* [`trustcacerts`](#trustcacerts)
-
-##### `certificate`
+* [`certificate`](#-java_ks--certificate)
+* [`certificate_content`](#-java_ks--certificate_content)
+* [`chain`](#-java_ks--chain)
+* [`destkeypass`](#-java_ks--destkeypass)
+* [`keytool_timeout`](#-java_ks--keytool_timeout)
+* [`name`](#-java_ks--name)
+* [`password_fail_reset`](#-java_ks--password_fail_reset)
+* [`password_file`](#-java_ks--password_file)
+* [`path`](#-java_ks--path)
+* [`private_key`](#-java_ks--private_key)
+* [`private_key_content`](#-java_ks--private_key_content)
+* [`private_key_type`](#-java_ks--private_key_type)
+* [`provider`](#-java_ks--provider)
+* [`source_alias`](#-java_ks--source_alias)
+* [`source_password`](#-java_ks--source_password)
+* [`storetype`](#-java_ks--storetype)
+* [`target`](#-java_ks--target)
+* [`trustcacerts`](#-java_ks--trustcacerts)
+
+##### `certificate`
A file containing a server certificate, followed by zero or more intermediate certificate authorities.
All certificates will be placed in the keystore. This will autorequire the specified file.
-##### `certificate_content`
+##### `certificate_content`
A string containing a server certificate, followed by zero or more intermediate certificate authorities.
All certificates will be placed in the keystore.
-##### `chain`
+##### `chain`
The intermediate certificate authorities, if they are to be taken
from a file separate from the server certificate. This will autorequire the specified file.
-##### `destkeypass`
+##### `destkeypass`
The password used to protect the key in keystore.
-##### `keytool_timeout`
+##### `keytool_timeout`
Timeout for the keytool command in seconds.
Default value: `120`
-##### `name`
+##### `name`
namevar
The alias that is used to identify the entry in the keystore. This will be
converted to lowercase.
-##### `password_fail_reset`
+##### `password_fail_reset`
-Valid values: ``true``, ``false``
+Valid values: `true`, `false`
If the supplied password does not succeed in unlocking the
keystore file, then delete the keystore file and create a new one.
Default: false.
-Default value: ``false``
+Default value: `false`
-##### `password_file`
+##### `password_file`
The path to a file containing the password used to protect the
keystore. This cannot be used together with :password, but you must pass at least one of these parameters.
-##### `path`
+##### `path`
The search path used for command (keytool, openssl) execution.
Paths can be specified as an array or as a '
-##### `private_key`
+##### `private_key`
If you want an application to be a server and encrypt traffic,
you will need a private key. Private key entries in a keystore must be
@@ -144,14 +144,14 @@ accompanied by a signed certificate for the keytool provider. This parameter
allows you to specify the file name containing the private key. This will autorequire
the specified file.
-##### `private_key_content`
+##### `private_key_content`
If you want an application to be a server and encrypt traffic,
you will need a private key. Private key entries in a keystore must be
accompanied by a signed certificate for the keytool provider. This parameter allows you to specify the content
of the private key.
-##### `private_key_type`
+##### `private_key_type`
Valid values: `rsa`, `dsa`, `ec`
@@ -161,38 +161,38 @@ Valid options: , , . Defaults to
Default value: `rsa`
-##### `provider`
+##### `provider`
The specific backend to use for this `java_ks` resource. You will seldom need to specify this --- Puppet will usually
discover the appropriate provider for your platform.
-##### `source_alias`
+##### `source_alias`
The source certificate alias
-##### `source_password`
+##### `source_password`
The source keystore password
-##### `storetype`
+##### `storetype`
Valid values: `jceks`, `pkcs12`, `jks`
Optional storetype
Valid options: , ,
-##### `target`
+##### `target`
namevar
Destination file for the keystore. This will autorequire the parent directory of the file.
-##### `trustcacerts`
+##### `trustcacerts`
-Valid values: ``true``, ``false``
+Valid values: `true`, `false`
Certificate authorities aren't by default trusted so if you are adding a CA you need to set this to true.
Defaults to :false.
-Default value: ``false``
+Default value: `false`
diff --git a/metadata.json b/metadata.json
index 70f311a..c6fb2c6 100644
--- a/metadata.json
+++ b/metadata.json
@@ -1,6 +1,6 @@
{
"name": "puppetlabs-java_ks",
- "version": "4.4.0",
+ "version": "4.4.1",
"author": "puppetlabs",
"summary": "Manage arbitrary Java keystore files",
"license": "Apache-2.0",