Merge pull request #3 from mengzhuo/master

Enable go mod

Author: ShellCode33

README.md

@@ -1,5 +1,9 @@
 # VM Detection
 
+[![Go Reference](https://pkg.go.dev/badge/github.com/ShellCode33/VM-Detection.svg)](https://pkg.go.dev/github.com/ShellCode33/VM-Detection)
+[![GoReportCard](https://goreportcard.com/badge/github.com/ShellCode33/VM-Detection)](https://goreportcard.com/report/github.com/ShellCode33/VM-Detection)
+[![Coverage Status](https://coveralls.io/repos/github/ShellCode33/VM-Detection/badge.svg?branch=master)](https://coveralls.io/github/ShellCode33/VM-Detection?branch=master)
+
 This project is a Go implementation of well-known techniques trying to detect if the program is being run in a virtual machine.
 There are many C programs already doing this, but none written in pure Go.
 
@@ -45,4 +49,4 @@ Thanks to [@hippwn](https://twitter.com/hippwn) for its contribution
 
 Thanks systemd for being [that awesome](https://github.com/systemd/systemd/blob/master/src/basic/virt.c).
 
-Thanks to CheckPoint's researchers for their [wonderful website](https://evasions.checkpoint.com/)
+Thanks to CheckPoint's researchers for their [wonderful website](https://evasions.checkpoint.com/)

go.mod

@@ -0,0 +1,15 @@
+module github.com/ShellCode33/VM-Detection
+
+go 1.21
+
+require (
+	github.com/klauspost/cpuid v1.3.1
+	github.com/shirou/gopsutil v3.21.11+incompatible
+	golang.org/x/sys v0.21.0
+)
+
+require (
+	github.com/go-ole/go-ole v1.2.6 // indirect
+	github.com/stretchr/testify v1.9.0 // indirect
+	github.com/yusufpapurcu/wmi v1.2.4 // indirect
+)

go.sum

@@ -0,0 +1,19 @@
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/go-ole/go-ole v1.2.6 h1:/Fpf6oFPoeFik9ty7siob0G6Ke8QvQEuVcuChpwXzpY=
+github.com/go-ole/go-ole v1.2.6/go.mod h1:pprOEPIfldk/42T2oK7lQ4v4JSDwmV0As9GaiUsvbm0=
+github.com/klauspost/cpuid v1.3.1 h1:5JNjFYYQrZeKRJ0734q51WCEEn2huer72Dc7K+R/b6s=
+github.com/klauspost/cpuid v1.3.1/go.mod h1:bYW4mA6ZgKPob1/Dlai2LviZJO7KGI3uoWLd42rAQw4=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/shirou/gopsutil v3.21.11+incompatible h1:+1+c1VGhc88SSonWP6foOcLhvnKlUeu/erjjvaPEYiI=
+github.com/shirou/gopsutil v3.21.11+incompatible/go.mod h1:5b4v6he4MtMOwMlS0TUMTu2PcXUg8+E1lC7eC3UO/RA=
+github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
+github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/yusufpapurcu/wmi v1.2.4 h1:zFUKzehAFReQwLys1b/iSMl+JQGSCSjtVqQn9bBrPo0=
+github.com/yusufpapurcu/wmi v1.2.4/go.mod h1:SBZ9tNy3G9/m5Oi98Zks0QjeHVDvuK0qfxQmPyzfmi0=
+golang.org/x/sys v0.0.0-20190916202348-b4ddaad3f8a3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

vmdetect/common.go

@@ -3,13 +3,14 @@ package vmdetect
 import (
 	"bufio"
 	"fmt"
-	"github.com/klauspost/cpuid"
-	"github.com/shirou/gopsutil/mem"
 	"io"
 	"net"
 	"os"
 	"runtime"
 	"strings"
+
+	"github.com/klauspost/cpuid"
+	"github.com/shirou/gopsutil/mem"
 )
 
 func PrintError(loggee interface{}) {

vmdetect/common_test.go

@@ -0,0 +1,10 @@
+package vmdetect
+
+import "testing"
+
+func TestCommonCheck(t *testing.T) {
+	inVM, msg := CommonChecks()
+	if inVM && msg != "nothing" {
+		t.Errorf("inside vm but got %s, expect else", msg)
+	}
+}

vmdetect/linux.go

@@ -1,3 +1,4 @@
+//go:build linux
 // +build linux
 
 package vmdetect
@@ -7,6 +8,7 @@ import (
 	"io/ioutil"
 	"os"
 	"os/user"
+	"path/filepath"
 	"time"
 )
 
@@ -44,7 +46,7 @@ func checkDMITable() bool {
 			continue
 		}
 
-		dmiContent, err := ioutil.ReadFile(dmiPath + dmiEntry.Name())
+		dmiContent, err := ioutil.ReadFile(filepath.Join(dmiPath, dmiEntry.Name()))
 
 		if err != nil {
 			PrintError(err)
@@ -127,11 +129,11 @@ Some virtualization technologies can be detected using /proc/device-tree
 func checkDeviceTree() bool {
 	deviceTreeBase := "/proc/device-tree"
 
-	if DoesFileExist(deviceTreeBase + "/hypervisor/compatible") {
+	if DoesFileExist(filepath.Join(deviceTreeBase, "/hypervisor/compatible")) {
 		return true
 	}
 
-	if DoesFileExist(deviceTreeBase + "/fw-cfg") {
+	if DoesFileExist(filepath.Join(deviceTreeBase, "/fw-cfg")) {
 		return true
 	}
 

vmdetect/linux_test.go

@@ -0,0 +1,45 @@
+//go:build linux
+// +build linux
+
+package vmdetect
+
+import (
+	"reflect"
+	"runtime"
+	"strings"
+	"testing"
+)
+
+func getFunctionName(f interface{}) string {
+	fn := runtime.FuncForPC(reflect.ValueOf(f).Pointer()).Name()
+	i := strings.LastIndex(fn, ".")
+	if i > 0 {
+		return fn[i:]
+	}
+	return fn
+}
+
+func TestCheckDMITable(t *testing.T) {
+	check := -1
+	for i, f := range []func() bool{
+		checkDMITable,
+		checkKernelRingBuffer,
+		checkUML,
+		checkSysInfo,
+		checkDeviceTree,
+		checkHypervisorType,
+		checkXenProcFile,
+		checkKernelModules,
+	} {
+		inVm := f()
+		t.Logf("%s:%v", getFunctionName(f), inVm)
+		if inVm && check == -1 {
+			check = i
+		}
+	}
+	inVM, msg := IsRunningInVirtualMachine()
+	t.Log(msg)
+	if check == -1 == inVM {
+		t.Errorf("check:%d, inVm:%v", check, inVM)
+	}
+}

vmdetect/windows.go

@@ -1,3 +1,4 @@
+//go:build windows
 // +build windows
 
 package vmdetect
@@ -300,8 +301,8 @@ func checkFileSystem() (bool, string) {
 }
 
 /*
-	Public function returning true if a VM is detected.
-	If so, a non-empty string is also returned to tell how it was detected.
+Public function returning true if a VM is detected.
+If so, a non-empty string is also returned to tell how it was detected.
 */
 func IsRunningInVirtualMachine() (bool, string) {
 	if vmDetected, how := CommonChecks(); vmDetected {