Retina compilation fails if a user specifies a filter with multiple application-layer protocols that have different L4 encapsulation (e.g., "quic or tls").
The check for valid layering using the protocol graph is meant to validate encapsulation (e.g., prevent the user from specifying "quic AND tls"), but it also blocks valid "or" conditions. Ideally the check would be fixed so that the former behavior is kept while the latter is fixed.
thearossman
commented
4 days ago
Retina compilation fails if a user specifies a filter with multiple application-layer protocols that have different L4 encapsulation (e.g., "quic or tls").
The check for valid layering using the protocol graph is meant to validate encapsulation (e.g., prevent the user from specifying "quic AND tls"), but it also blocks valid "or" conditions. Ideally the check would be fixed so that the former behavior is kept while the latter is fixed.