Application Analyze

Related: HackingOnkyo TR-NX509/Boot-message

# less inittab console::sysinit:/etc/init.d/rcS console::wait:/etc/init.d/rc 3 console::respawn:/sbin/getty console console::respawn:/opt/onkyo/avr/bin/netapp console::respawn:/opt/onkyo/avr/bin/spid

SPI DAEMON /opt/onkyo/avr/bin/spid

PID 243 in this case:

# ls -la fd
dr-x------    2 root     root            0 Aug  7 19:31 .
dr-xr-xr-x    6 root     root            0 Aug  7 19:31 ..
lrwx------    1 root     root           64 Aug  7 19:32 0 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 1 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 10 -> socket:[50]
lrwx------    1 root     root           64 Aug  7 19:32 2 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 3 -> anon_inode:[eventpoll]
lr-x------    1 root     root           64 Aug  7 19:32 4 -> pipe:[38]
l-wx------    1 root     root           64 Aug  7 19:32 5 -> pipe:[38]
lrwx------    1 root     root           64 Aug  7 19:32 6 -> /dev/gpiodev
lrwx------    1 root     root           64 Aug  7 19:32 7 -> /dev/spidev1.0
lrwx------    1 root     root           64 Aug  7 19:32 8 -> socket:[42]
lrwx------    1 root     root           64 Aug  7 19:32 9 -> socket:[49]

# netstat -nap | grep 243

unix  2      [ ]         DGRAM                        42 243/spid            /tmp/ipc_system
unix  2      [ ]         DGRAM                        50 243/spid            
unix  2      [ ]         DGRAM                        49 243/spid     

Audioappe

dr-x------    2 root     root            0 Aug  7 19:32 .
dr-xr-xr-x    6 root     root            0 Aug  6 21:09 ..
lr-x------    1 root     root           64 Aug  7 19:32 0 -> /dev/null
lrwx------    1 root     root           64 Aug  7 19:32 1 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 10 -> /tmp/dsplink
lrwx------    1 root     root           64 Aug  7 19:32 11 -> /tmp/dsplink
lrwx------    1 root     root           64 Aug  7 19:32 12 -> /dev/mem
lrwx------    1 root     root           64 Aug  7 19:32 2 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 3 -> anon_inode:[eventpoll]
lr-x------    1 root     root           64 Aug  7 19:32 4 -> pipe:[39]
l-wx------    1 root     root           64 Aug  7 19:32 5 -> pipe:[39]
lrwx------    1 root     root           64 Aug  7 19:32 6 -> /dev/gpiodev
lrwx------    1 root     root           64 Aug  7 19:32 7 -> /dev/spidev0.0
lrwx------    1 root     root           64 Aug  7 19:32 8 -> /dev/spidev0.1
lrwx------    1 root     root           64 Aug  7 19:32 9 -> socket:[40]

netapp

netstat -nap | grep -i netapp
netstat: /proc/net/tcp6: No such file or directory
netstat: /proc/net/udp6: No such file or directory
netstat: /proc/net/raw6: No such file or directory
tcp        0      0 0.0.0.0:60128           0.0.0.0:*               LISTEN      13363/netapp
tcp        0      0 0.0.0.0:8888            0.0.0.0:*               LISTEN      13363/netapp
tcp    68196      0 10.0.2.187:51292        207.200.96.136:80       ESTABLISHED 13363/netapp
udp        0      0 0.0.0.0:1900            0.0.0.0:*                           13363/netapp
udp        0      0 0.0.0.0:60128           0.0.0.0:*                           13363/netapp
udp        0      0 10.0.2.187:47586        0.0.0.0:*                           13363/netapp
udp        0      0 127.0.0.1:36840         0.0.0.0:*                           13363/netapp
unix  2      [ ]         DGRAM                     39339 13363/netapp        /tmp/netapp_server
unix  2      [ ACC ]     STREAM     LISTENING      39615 13363/netapp        /tmp/ISCP_CONTROL_SOCK

ls -la /proc/13363/fd/
dr-x------    2 root     root            0 Aug  7 19:32 .
dr-xr-xr-x    6 root     root            0 Aug  6 21:09 ..
lrwx------    1 root     root           64 Aug  7 19:32 0 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 1 -> /dev/console
lr-x------    1 root     root           64 Aug  7 19:32 10 -> pipe:[39338]
l-wx------    1 root     root           64 Aug  7 19:32 11 -> pipe:[39338]
lrwx------    1 root     root           64 Aug  7 19:32 12 -> socket:[39339]
lr-x------    1 root     root           64 Aug  7 19:32 13 -> inotify
lrwx------    1 root     root           64 Aug  7 19:32 14 -> /tmp/dsplink
lrwx------    1 root     root           64 Aug  7 19:32 15 -> socket:[39615]
lrwx------    1 root     root           64 Aug  7 19:32 16 -> /tmp/dsplink
lrwx------    1 root     root           64 Aug  7 19:32 17 -> socket:[39617]
lrwx------    1 root     root           64 Aug  7 19:32 18 -> socket:[39618]
lrwx------    1 root     root           64 Aug  7 19:32 19 -> socket:[39673]
lrwx------    1 root     root           64 Aug  7 19:32 2 -> /dev/console
lrwx------    1 root     root           64 Aug  7 19:32 20 -> socket:[39674]
lrwx------    1 root     root           64 Aug  7 19:32 21 -> socket:[39675]
lrwx------    1 root     root           64 Aug  7 19:32 22 -> socket:[39678]
lrwx------    1 root     root           64 Aug  7 19:32 23 -> socket:[39679]
lrwx------    1 root     root           64 Aug  7 19:32 24 -> socket:[39680]
lrwx------    1 root     root           64 Aug  7 19:32 25 -> socket:[39684]
lrwx------    1 root     root           64 Aug  7 19:32 27 -> anon_inode:[eventpoll]
lr-x------    1 root     root           64 Aug  7 19:32 28 -> pipe:[39774]
l-wx------    1 root     root           64 Aug  7 19:32 29 -> pipe:[39774]
lrwx------    1 root     root           64 Aug  7 19:32 3 -> anon_inode:[eventpoll]
lrwx------    1 root     root           64 Aug  7 19:32 30 -> anon_inode:[eventpoll]
lrwx------    1 root     root           64 Aug  7 19:32 31 -> anon_inode:[eventpoll]
lr-x------    1 root     root           64 Aug  7 19:32 32 -> pipe:[39777]
l-wx------    1 root     root           64 Aug  7 19:32 33 -> pipe:[39777]
lr-x------    1 root     root           64 Aug  7 19:32 34 -> pipe:[39793]
l-wx------    1 root     root           64 Aug  7 19:32 35 -> pipe:[39793]
lrwx------    1 root     root           64 Aug  7 19:32 37 -> socket:[305025]
l-wx------    1 root     root           64 Aug  7 19:32 38 -> /dev/dsp
lr-x------    1 root     root           64 Aug  7 19:32 4 -> pipe:[39336]
l-wx------    1 root     root           64 Aug  7 19:32 5 -> pipe:[39336]
lrwx------    1 root     root           64 Aug  7 19:32 6 -> anon_inode:[eventpoll]
lr-x------    1 root     root           64 Aug  7 19:32 7 -> pipe:[39337]
l-wx------    1 root     root           64 Aug  7 19:32 8 -> pipe:[39337]
lrwx------    1 root     root           64 Aug  7 19:32 9 -> anon_inode:[eventpoll]