From b428573a0ad7a6916f20718f15b26aad2b44eea4 Mon Sep 17 00:00:00 2001 From: Josh Brower Date: Fri, 6 Jun 2025 17:48:49 -0400 Subject: [PATCH] Airgap tweaks --- salt/manager/init.sls | 9 +++++++++ salt/manager/tools/sbin/soup | 3 +-- 2 files changed, 10 insertions(+), 2 deletions(-) diff --git a/salt/manager/init.sls b/salt/manager/init.sls index 07a1b8816..737d753f4 100644 --- a/salt/manager/init.sls +++ b/salt/manager/init.sls @@ -156,6 +156,13 @@ rules_dir: - group: socore - makedirs: True +nsm_playbooks_dir: + file.directory: + - name: /nsm/airgap-resources/playbooks + - user: socore + - group: socore + - makedirs: True + git_config_set_safe_dirs: git.config_set: - name: safe.directory @@ -166,6 +173,8 @@ git_config_set_safe_dirs: - /nsm/rules/custom-local-repos/local-yara - /nsm/securityonion-resources - /opt/so/conf/soc/ai_summary_repos/securityonion-resources + - /nsm/airgap-resources/playbooks + - /opt/so/conf/soc/playbooks {% else %} {{sls}}_state_not_allowed: diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup index 257699c4e..d1c84ec2f 100755 --- a/salt/manager/tools/sbin/soup +++ b/salt/manager/tools/sbin/soup @@ -1071,7 +1071,7 @@ update_airgap_rules() { update_airgap_playbooks() { # Copy the playbooks over to update them for airgap. - rsync -a --delete --chown=socore:socore $UPDATE_DIR/airgap-resources/playbooks/* /nsm/airgap-resources/playbooks/ + rsync -a --delete --chown=socore:socore $UPDATE_DIR/airgap-resources/playbooks/ /nsm/airgap-resources/playbooks/ } update_airgap_repo() { @@ -1258,7 +1258,6 @@ apply_hotfix() { elif [[ "$INSTALLEDVERSION" == "2.4.30" ]] ; then if [[ $is_airgap -eq 0 ]]; then update_airgap_rules - update_airgap_playbooks fi if [[ -f /etc/pki/managerssl.key.old ]]; then echo "Skipping Certificate Generation"