Lots of cleanup and API documentation for the analyzer/* classes.

I've used the opportunity to also cleanup DPD's expect_connection()
infrastructure, and renamed that bif to schedule_analyzer(), which
seems more appropiate. One can now also schedule more than one
analyzer per connection.

TODOs:
        - "make install" is probably broken.
        - Broxygen is probably broken for plugin-defined events.
        - event groups are broken (do we want to keep them?)
        - parallel btest is broken, but I'm not sure why ...
          (tests all pass individually, but lots of error when running
          in parallel; must be related to *.bif restructuring).
        - Document API for src/plugin/*
        - Document API for src/analyzer/Analyzer.h
        - Document API for scripts/base/frameworks/analyzer

src/RuleAction.cc

@@ -54,15 +54,12 @@ RuleActionAnalyzer::RuleActionAnalyzer(const char* arg_analyzer)
 			reporter->Warning("unknown analyzer '%s' specified in rule", arg.c_str());
 		}
 	else
-		child_analyzer = analyzer::Tag::ERROR;
-
-	if ( analyzer != analyzer::Tag::ERROR )
-		analyzer_mgr->ActivateSigs();
+		child_analyzer = analyzer::Tag();
 	}
 
 void RuleActionAnalyzer::PrintDebug()
 	{
-	if ( child_analyzer == analyzer::Tag::ERROR )
+	if ( ! child_analyzer )
 		fprintf(stderr, "|%s|\n", analyzer_mgr->GetAnalyzerName(analyzer).c_str());
 	else
 		fprintf(stderr, "|%s:%s|\n",
@@ -74,7 +71,7 @@ void RuleActionAnalyzer::PrintDebug()
 void RuleActionEnable::DoAction(const Rule* parent, RuleEndpointState* state,
 				const u_char* data, int len)
 	{
-	if ( ChildAnalyzer() == analyzer::Tag::ERROR )
+	if ( ! ChildAnalyzer() )
 		{
 		if ( ! analyzer_mgr->IsEnabled(Analyzer()) )
 			return;
@@ -103,7 +100,7 @@ void RuleActionEnable::PrintDebug()
 void RuleActionDisable::DoAction(const Rule* parent, RuleEndpointState* state,
 					const u_char* data, int len)
 	{
-	if ( ChildAnalyzer() == analyzer::Tag::ERROR )
+	if ( ! ChildAnalyzer() )
 		{
 		if ( state->PIA() )
 			state->PIA()->DeactivateAnalyzer(Analyzer());