From bcf920fc9497ed4f15b3ae74f1ee72213038632d Mon Sep 17 00:00:00 2001
From: Stephane de Labrusse <stephdl@de-labrusse.fr>
Date: Wed, 15 Jan 2025 16:13:30 +0100
Subject: [PATCH] feat(inventory): add suppression rules count to Snort facts

---
 src/nethsec/inventory/__init__.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/nethsec/inventory/__init__.py b/src/nethsec/inventory/__init__.py
index 0411f17..c6f91d0 100644
--- a/src/nethsec/inventory/__init__.py
+++ b/src/nethsec/inventory/__init__.py
@@ -469,7 +469,7 @@ def fact_wiregard(uci: EUci):
 
 
 def fact_snort(uci: EUci):
-    ret = { 'enabled': False, 'policy': '', 'oink_enabled': False, 'disabled_rules': 0, 'bypass_src_ipv4': 0, 'bypass_src_ipv6': 0, 'bypass_dst_ipv4': 0, 'bypass_dst_ipv6': 0 }
+    ret = { 'enabled': False, 'policy': '', 'oink_enabled': False, 'disabled_rules': 0, 'suppress_rules': 0, 'bypass_src_ipv4': 0, 'bypass_src_ipv6': 0, 'bypass_dst_ipv4': 0, 'bypass_dst_ipv6': 0 }
 
     ret['enabled'] = uci.get('snort', 'snort', 'enabled', dtype=bool, default=False)
     ret['policy'] = uci.get('snort', 'snort', 'ns_policy', default='')
@@ -477,6 +477,8 @@ def fact_snort(uci: EUci):
 
     # count list of ns_disabled_rules
     ret['disabled_rules'] = len(uci.get('snort', 'snort', 'ns_disabled_rules', list=True, default=[]))
+    # count list of ns_suppress rules
+    ret['suppress_rules'] = len(uci.get('snort', 'snort', 'ns_suppress', list=True, default=[]))
     # count the source bypass of ipv4 and ipv6
     ret['bypass_src_ipv4'] = len(uci.get('snort', 'nfq', 'bypass_src_v4', list=True, default=[]))
     ret['bypass_src_ipv6'] = len(uci.get('snort', 'nfq', 'bypass_src_v6', list=True, default=[]))