Support min_version and max_version on evaluation primitives and RASP operator versioning

[Anilm3]

This PR introduces:

• New min_version and max_version tags on evaluation primitives (rules, exclusion filters, processors and scanners). These tags are used define the range of libddwaf versions [min_version, max_version] for which the rule should be applied. When the evaluation primitive is not compatible with the current version, the ID is included in the relevant diagnostics, within the new skipped section.
• Support for operator version, specifically for RASP operators, through a suffix such as sqli_detector@v2. The current implementation only allows a single version number, rather than the typical three dot-separated version numbers. Operator version numbers work as follows:
  • When the required version is equal or smaller to the current operator version, the current operator is considered version-compliant.
  • When the required version is higher than the current version, the rule containing said RASP operator is entirely skipped.

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 74.57627% with 30 lines in your changes missing coverage. Please review.

Project coverage is 84.54%. Comparing base (851a05d) to head (27f9944).

Files with missing lines	Patch %	Lines
src/semver.hpp	65.95%	0 Missing and 16 partials ⚠️
src/parser/exclusion_parser.cpp	55.55%	2 Missing and 2 partials ⚠️
src/parser/processor_parser.cpp	55.55%	2 Missing and 2 partials ⚠️
src/parser/rule_parser.cpp	83.33%	0 Missing and 2 partials ⚠️
src/ruleset_info.hpp	60.00%	1 Missing and 1 partial ⚠️
src/parser/expression_parser.cpp	94.44%	0 Missing and 1 partial ⚠️
src/parser/scanner_parser.cpp	83.33%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #343      +/-   ##
==========================================
- Coverage   84.75%   84.54%   -0.21%     
==========================================
  Files         149      150       +1     
  Lines        7143     7248     +105     
  Branches     3297     3356      +59     
==========================================
+ Hits         6054     6128      +74     
- Misses        410      417       +7     
- Partials      679      703      +24     

Flag	Coverage Δ
waf_test	84.54% <74.57%> (-0.21%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[pr-commenter]

Benchmarks

Benchmark execution time: 2024-10-11 13:10:55

Comparing candidate commit 27f9944 in PR branch anilm3/rule-and-operator-version with baseline commit 851a05d in branch master.

Found 0 performance improvements and 1 performance regressions! Performance is the same for 0 metrics, 0 unstable metrics.

scenario:global-benchmark.random

• 🟥 execution_time [+20.745ms; +20.803ms] or [+7.510%; +7.531%]

[cataphract]

I find it quite sad that we're adding two overlapping mechanism for version-based selection, but o/wise it's fine