From: Victor Julien <victor@inliniac.net>
Date: Tue, 14 Aug 2018 09:12:37 +0000 (+0200)
Subject: detect/files: fix inspection issues with 'alert ip'
X-Git-Tag: suricata-4.1.0-rc2~127
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=28e74abcc56ff6b22837301bce4f7608d3449757;p=thirdparty%2Fsuricata.git

detect/files: fix inspection issues with 'alert ip'

Don't track the 'skipped' engines as matches.
---

diff --git a/src/detect.c b/src/detect.c
index 39b395728f..6aaa6996ad 100644
--- a/src/detect.c
+++ b/src/detect.c
@@ -1211,9 +1211,7 @@ static bool DetectRunTxInspectRule(ThreadVars *tv,
             /* special case: file_data on 'alert tcp' will have engines
              * in the list that are not for us. Bypass with assume match */
             } else if (unlikely(engine->alproto != 0 && engine->alproto != f->alproto)) {
-                inspect_flags |= BIT_U32(engine->id);
                 engine = engine->next;
-                total_matches++;
                 continue;
             } else {
                 KEYWORD_PROFILING_SET_LIST(det_ctx, engine->sm_list);