Skip to content

[9.18] Test secure chain that includes inactive KSK

Partial Backport of MR !8848 (merged)

Add a regression test case for the scenario where a secure chain of trust includes an inactive KSK, that is a KSK that is not signing the DNSKEY RRset.

(cherry picked from commit f0bfd276)

Also see #4625 (closed)

Edited by Matthijs Mekking

Merge request reports