Negative Trust Anchors can disappear after "rndc reconfig" or "rndc reload"
Summary
Reported by a customer who is running BIND Supported Preview Edition 9.10.6-S3: Negative Trust Anchors (NTAs) can disappear after an "rndc reconfig" or "rndc reload"
Steps to reproduce
We asked the customer to list their NTAs, reconfigure, and list again:
$ rndc nta -dump |wc -l
100
$ rndc reconfig
$ rndc nta -dump |wc -l
0
What is the current bug behavior?
Named appears to lose track of the NTAs after "rndc reconfigure". Per the customer, also after "rndc reload"
What is the expected correct behavior?
Per the ARM, NTAs should persist through their valid lifetime, even across named restarts.