udevd[836]: add_to_rules: unknown key 'ATTRS{idVendor}'

What does ls -lh /etc/udev/rules.d/ show?

@obs:

What does ls -lh /etc/udev/rules.d/ show?

total 64K
-rw-r--r-- 1 root root  515 Aug  5  2010 05-udev-early.rules
-rw-r--r-- 1 root root  948 Oct  4 21:45 40-multipath.rules
-rw-r--r-- 1 root root  16K Aug  5  2010 50-udev.rules
-rw-r--r-- 1 root root  471 Aug  5  2010 51-hotplug.rules
-rw-r--r-- 1 root root  143 Jul  4  2009 60-net.rules
-rw-r--r-- 1 root root 1.1K Jan  7  2007 60-pcmcia.rules
-rw-r--r-- 1 root root  316 Jan 20  2010 60-raw.rules
-rw-r--r-- 1 root root 1.9K Nov 18  2008 85-pcscd_ccid.rules
-rw-r--r-- 1 root root   61 Aug  5  2010 90-dm.rules
-rw-r--r-- 1 root root   82 Mar 31  2010 90-hal.rules
-rw-r--r-- 1 root root  107 Aug  5  2010 95-pam-console.rules
-rw-r--r-- 1 root root 2.3K Jul 14  2008 bluetooth.rules

Well one of those is most likely the offender, not sure which since I don't have a centos image to compare to if you have another centos box that doesn't have the problem compare to two, or you could wait for someone here that has one to compare.

If you check the contents of each one you should be able to work out which is the offending one.

@obs:

Well one of those is most likely the offender, not sure which since I don't have a centos image to compare to if you have another centos box that doesn't have the problem compare to two, or you could wait for someone here that has one to compare.

If you check the contents of each one you should be able to work out which is the offending one.

Explored all files but I haven't finded any "uneducated" lines that offends… :?

``` a=find /etc/udev -type f rpm --verifyrpm -qf $a | uniq` | grep udev

Any line will be something that has been modified since the rpm was installed.

Also,

cd /etc/udev
grep ATTRS /
````
should return nothing

@sweh:

Also,

cd /etc/udev
grep ATTRS */*

should return nothing

This helped a lot finding the lines that generated the warnings, commented them and the problem was solved.

THANKS!

what do you think that might added this lines to the udev rules?

Show us a few example lines, and we might be able to make a guess. Otherwise it could be anything

@sweh:

Show us a few example lines, and we might be able to make a guess. Otherwise it could be anything

this was the file that generated that warning:

# udev rules for pcscd and CCID readers

# Gemplus PCMCIA Card
#SUBSYSTEMS=="pcmcia", DRIVERS=="serial_cs", ACTION=="add", ATTRS{prod_id1}=="Gemplus", ATTRS{prod_id2}=="SerialPort", ATTRS{prod_id3}=="GemPC Card", RUN+="/usr/sbin/pcscd --hotplug"

# If not adding the device, go away
#ACTION!="add", GOTO="pcscd_ccid_rules_end"

# Kobil mIDentity
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="0d46", ATTRS{idProduct}=="4081", RUN+="/usr/sbin/Kobil_mIDentity_switch"

# generic CCID device
#SUBSYSTEMS=="usb", ATTRS{bInterfaceClass}=="0b", RUN+="/usr/sbin/pcscd --hotplug"

# non CCID generic (InterfaceClass: 0xFF)
# CherrySmartTerminalST2XXX.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="046a", ATTRS{idProduct}=="003e", RUN+="/usr/sbin/pcscd --hotplug"
# DellSK-3106.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="413c", ATTRS{idProduct}=="2100", RUN+="/usr/sbin/pcscd --hotplug"
# MySmartPad.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="09be", ATTRS{idProduct}=="0002", RUN+="/usr/sbin/pcscd --hotplug"
# SCR331-DI-NTTCom.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="04e6", ATTRS{idProduct}=="5120", RUN+="/usr/sbin/pcscd --hotplug"
# SCR331-DI.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="04e6", ATTRS{idProduct}=="5111", RUN+="/usr/sbin/pcscd --hotplug"
# SDI010.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="04e6", ATTRS{idProduct}=="5121", RUN+="/usr/sbin/pcscd --hotplug"
# SPR532.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="04e6", ATTRS{idProduct}=="e003", RUN+="/usr/sbin/pcscd --hotplug"
# Verisign_secure_storage_token.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="08e6", ATTRS{idProduct}=="1359", RUN+="/usr/sbin/pcscd --hotplug"
# Verisign_secure_token.txt
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="08e6", ATTRS{idProduct}=="ace0", RUN+="/usr/sbin/pcscd --hotplug"
# SchlumbergerSema Cyberflex Access e-gate
#SUBSYSTEMS=="usb", ATTRS{idVendor}=="0973", ATTRS{idProduct}=="0003", RUN+="/usr/sbin/pcscd --hotplug"

# All done
#LABEL="pcscd_ccid_rules_end"

the questions is, I'm using an enterprise distro, who asked to insert that lines in that file?

filename: 85-pcscd_ccid.rules

I'm running CentOS 5.5 at home, and that bad line doesn't show up on my machine.

I have a CentOS 5.4 image at linode, and that file doesn't show up at all.

What is the output of

rpm -qf /etc/udev/rules.d/85*
rpm -f  /etc/udev/rules.d/85* --verify

@sweh:

I'm running CentOS 5.5 at home, and that bad line doesn't show up on my machine.

I have a CentOS 5.4 image at linode, and that file doesn't show up at all.

What is the output of

rpm -qf /etc/udev/rules.d/85*
rpm -f  /etc/udev/rules.d/85* --verify

[root@xxx rules.d]# rpm -qf /etc/udev/rules.d/85*
pcsc-lite-ccid-1.3.10-1.el5.rf
[root@xxx rules.d]# rpm -f  /etc/udev/rules.d/85* --verify
S.5....T  c /etc/udev/rules.d/85-pcscd_ccid.rules
[root@xxx rules.d]#

The "rf" in "pcsc-lite-ccid-1.3.10-1.el5.rf " appears to say that you installed a package from rpmforge, which isn't an official CentOS repository.

Which confuses me, slightly, since I can't find this on rpmforge. I've no idea where you got it from.

The 2nd line says the file was then changed since it was installed.

What does "rpm -qi pcsc-lite-ccid" say?

@sweh:

What does "rpm -qi pcsc-lite-ccid" say?

> Name : pcsc-lite-ccid Relocations: (not relocatable)

Version : 1.3.10 Vendor: Dag Apt Repository, http://dag.wieers.com/apt/

Release : 1.el5.rf Build Date: Thu 24 Feb 2011 07:50:10 PM CET

Install Date: Sat 26 Feb 2011 08:54:44 AM CET Build Host: lisse.hasselt.wieers.com

Group : System Environment/Libraries Source RPM: pcsc-lite-ccid-1.3.10-1.el5.rf.src.rpm

Size : 665433 License: LGPLv2+ and GPLv2+

Signature : DSA/SHA1, Fri 25 Feb 2011 12:40:38 AM CET, Key ID a20e52146b8d79e6

Packager : Dag Wieers <dag@wieers.com>

URL : http://pcsclite.alioth.debian.org/ccid.html

Summary : Generic USB CCID smart card reader driver

Description :

Generic USB CCID (Chip/Smart Card Interface Devices) driver for use with the

PC/SC Lite daemon.

So you've been installing packages from non-CentOS repositories. It claims you installed it:

Install Date: Sat 26 Feb 2011 08:54:44 AM CET

It's possible that rpm was bad and had incorrect lines for CentOS. It's also possible that you installed some other software that depended on it and they wrote bad lines.

Since you rebooted on the 27th, I'm gonna guess it was something you did around this time that caused the problem.

@sweh:

a=`find /etc/udev -type f`
rpm --verify `rpm -qf $a | uniq` | grep udev

Any line will be something that has been modified since the rpm was installed.

Also,

cd /etc/udev
grep ATTRS */*

should return nothing

THANKS!

i had to register to thank you for giving some helpful commands to diagnose this issue.

i had the same pcsc-lite-ccid package that sblantipodi had. i removed it with yum (along with coolkey and esc that were dependancies)

the messages are gone and those packages were not required for my server's specs.

• i have yum-priorities installed and have added repositories for epel-release and rpmforge-release with lower priorities than the CentOS repositories. the extra repositories were required for some applications that are not in CentOS.