protodetect: overwrite rflow flag detected by PM

[ilya-bakhtin]

rflow flag initially detected by PM must be overwritten by the results from PP if alproto from PP is finally taken.

Make sure these boxes are signed before submitting your Pull Request -- thank you.

• [x] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html
• [x] I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/ (note: this is only required once)
• [ ] I have updated the user guide (in doc/userguide/) to reflect the changes made (if applicable)
• [x] I have created a ticket at https://redmine.openinfosecfoundation.org/projects/suricata/issues (if applicable)

Link to ticket: https://redmine.openinfosecfoundation.org/issues/7111

Describe changes: Currently, when rflow condition is initially detected by PM, and then alproto is updated by PP, the rflow is never reverted. If alproto detected by PP is finally used then rflow detected by PP must be taken.

Provide values to any of the below to override the defaults.

• To use an LibHTP, Suricata-Verify or Suricata-Update pull request, link to the pull request in the respective _BRANCH variable.
• Leave unused overrides blank or remove.

SV_REPO= SV_BRANCH=https://github.com/OISF/suricata-verify/pull/1837 SU_REPO= SU_BRANCH= LIBHTP_REPO= LIBHTP_BRANCH=