Cause: When modrdn operation was executed, only newrdn change was passed to the acl plugin. Also, the change was used only for the acl search, but not for the acl target in the items in the acl cache.
Consequence: Once modrdn is operated, acl assigned to the entry was temporarily disabled until the server is restarted.
Fix: The newsuperior update is also passed to the acl plugin. And the modrdn updates are applied to the acl target in the acl cache.
Result: Acl is not affected by the modrdn operation.