Export attestation file information to provenance metadata of an artifact if its attestation file exists. Bug: 231239599 Test: m provenance_metadata Test: atest --host gen_provenance_metadata_test Change-Id: I6c53d7713874c9b2fd8a422b030b7c8d23317f5b

commit: b68b3675fd96526e4a1f9c9909f5befb4a650d5b [log] [tgz]
author: Wei Li <weiwli@google.com> Tue May 03 16:13:00 2022 -0700
committer: Wei Li <weiwli@google.com> Tue May 10 02:24:43 2022 +0000
tree: 5272f107d020d013a4ed4682e7f7c711142854a8
parent: 979ef5bb2a728f681522744739f5cd12fc86cc95 [diff] [blame]
diff --git a/provenance/tools/gen_provenance_metadata.py b/provenance/tools/gen_provenance_metadata.py
index b33f911..f3f4d1f 100644
--- a/provenance/tools/gen_provenance_metadata.py
+++ b/provenance/tools/gen_provenance_metadata.py

@@ -16,6 +16,7 @@
 
 import argparse
 import hashlib
+import os.path
 import sys
 
 import google.protobuf.text_format as text_format
@@ -51,6 +52,11 @@
     h.update(artifact_file.read())
   provenance_metadata.artifact_sha256 = h.hexdigest()
 
+  Log("Check if there is attestation for the artifact")
+  attestation_file_name = args.artifact_path + ".intoto.jsonl"
+  if os.path.isfile(attestation_file_name):
+    provenance_metadata.attestation_path = attestation_file_name
+
   text_proto = [
       "# proto-file: build/soong/provenance/proto/provenance_metadata.proto",
       "# proto-message: ProvenanceMetaData",
commit	b68b3675fd96526e4a1f9c9909f5befb4a650d5b	[log] [tgz]
author	Wei Li <weiwli@google.com>	Tue May 03 16:13:00 2022 -0700
committer	Wei Li <weiwli@google.com>	Tue May 10 02:24:43 2022 +0000
tree	5272f107d020d013a4ed4682e7f7c711142854a8
parent	979ef5bb2a728f681522744739f5cd12fc86cc95 [diff] [blame]