From fe860481c5e93badadc244e44c9bf089477c0276 Mon Sep 17 00:00:00 2001
From: defensivedepth <josh@defensivedepth.com>
Date: Thu, 26 Sep 2024 08:52:53 -0400
Subject: [PATCH] Fix location for airgap

---
 salt/manager/tools/sbin/soup | 10 +++++-----
 setup/so-functions           |  4 ++--
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/salt/manager/tools/sbin/soup b/salt/manager/tools/sbin/soup
index 0440ea1bd8..c8b2387c7f 100755
--- a/salt/manager/tools/sbin/soup
+++ b/salt/manager/tools/sbin/soup
@@ -888,11 +888,11 @@ update_airgap_rules() {
   rsync -av $UPDATE_DIR/agrules/suricata/* /nsm/rules/suricata/
   rsync -av $UPDATE_DIR/agrules/detect-sigma/* /nsm/rules/detect-sigma/
   rsync -av $UPDATE_DIR/agrules/detect-yara/* /nsm/rules/detect-yara/
-  # Checkout the stable summaries branch and copy them over for SOC
-  git -C $UPDATE_DIR/agrules/securityonion-resources/ checkout generated-summaries-published
-  rsync -av $UPDATE_DIR/agrules/securityonion-resources/* /opt/so/conf/soc/ai_summary_repos
-  # Checkout the main branch and copy them over to nsm
-  git -C $UPDATE_DIR/agrules/securityonion-resources/ checkout main
+  # Copy the securityonion-resorces repo over for SOC Detection Summaries and checkout the published summaries branch
+  rsync -av --chown=socore:socore $UPDATE_DIR/agrules/securityonion-resources /opt/so/conf/soc/ai_summary_repos
+  git config --global --add safe.directory /opt/so/conf/soc/ai_summary_repos
+  git -C /opt/so/conf/soc/ai_summary_repos/securityonion-resources checkout generated-summaries-published
+  # Copy the securityonion-resorces repo over to nsm
   rsync -av $UPDATE_DIR/agrules/securityonion-resources/* /nsm/securityonion-resources/
 }
 
diff --git a/setup/so-functions b/setup/so-functions
index 96d83e5d2a..3f7440597c 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -47,10 +47,10 @@ airgap_rules() {
 	rsync -av /root/SecurityOnion/agrules/ /nsm/rules/
 
 	# Copy over the securityonion-resources repo
-	rsync -av  /root/SecurityOnion/agrules/securityonion-resources/ /nsm/
+	rsync -av  /root/SecurityOnion/agrules/securityonion-resources /nsm/
 
   	# Copy summaries over to SOC and checkout the correct branch
-	rsync -av --chown=socore:socore /nsm/securityonion-resources/* /opt/so/conf/soc/ai_summary_repos
+	rsync -av --chown=socore:socore /nsm/securityonion-resources /opt/so/conf/soc/ai_summary_repos
 	git config --global --add safe.directory /opt/so/conf/soc/ai_summary_repos/securityonion-resources
   	git -C /opt/so/conf/soc/ai_summary_repos/securityonion-resources checkout generated-summaries-published
 }