-
Notifications
You must be signed in to change notification settings - Fork 9.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Terraform 0.11 incorrectly deferred data source read; 0.12 now behaves correctly, changing behavior #22730
Comments
This is definitely an issue I'm running into with some work I'm doing now with https://github.com/trussworks/terraform-aws-ecs-service trying to update it for Terraform 0.12; this prevents the creation of the ECS service when the cluster doesn't exist, which worked with Terraform 0.11. |
Hi @dynamike, After reviewing the linked issue hashicorp/terraform-provider-aws#9947, our initial instinct is that this does seem to be a primarily provider bug. The Terraform Core team doesn't have all the context on the behavior of the A data source is expected to either return a result or to fail. Specific data sources may be defined such that an empty result makes sense, such as if they are querying a set of objects based on a filter and the filter matches nothing, but the common case for data resources is to match exactly one object, and that seems to be the intent of The linked issue suggests that instead of failing, this data source is setting From a quick skim of the relevant provider code, the bug on the provider side seems to arise from having borrowed some code from the corresponding With that said, there is still some odd core behavior unexplained here which we'd like to understand better. In your 0.11 example we can see that data "aws_ecr_repository" "main" {
name = "apples"
}
This therefore feels like a bug in Terraform 0.11 that was inadvertently fixed as a side-effect of other work in 0.12. In order to explain that more fully we'll need to try this on Terraform 0.11 ourselves and read the trace log to understand what caused Terraform to believe it had to defer this data read until apply time. Our focus is naturally on Terraform 0.12 now, so we likely won't be able to spend further time investigating this apparent Terraform 0.11 bug in the near future. Unfortunately that doesn't really help with what you are trying to do here: Terraform 0.12 appears to be working as designed, but that design is not aligned with what you were trying to achieve here. Generally-speaking we'd recommend not trying to create and read a particular object within the same configuration, since Terraform currently has no way to guarantee the necessary ordering due to the need to refresh data resources as early as possible for other reasons. If you do need to create an ECR repository and use it in the same configuration, we'd recommend using the techniques described in the Module Composition guide, passing in the ECR repository object to the module as an object variable rather than having the module try to read it for itself: resource "aws_ecr_repository" "example" {
# ...
}
module "uses_ecr" {
source = "./modules/uses-ecr"
ecr_repository = aws_ecr_repository.example
} ...and then in the variable "ecr_repository" {
# Describe the attributes from aws_ecr_repository that the module needs
type = object({
arn = string
repository_url = string
})
} Terraform 0.11's limited type system made it hard to pass around resource objects like this, and so we can see that passing an id and then using a data source to retrieve the full object might've been a compelling workaround. However, now that Terraform 0.12 fully supports passing around resource instances as object values we'd recommend making use of that capability so that Terraform can better understand how data flows through the configuration and thus perform actions in the correct order. |
Passing the object to the module is definitely a better plan; doing that fixes the issue I was running into. |
I really appreciate the thorough response on this and very much agree that better path forward is to pass the object directly into the module (I didn't know you could do this!). I'm going to close this as the focus on 0.12 is the right call IMO. |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further. |
Terraform Version
Terraform Configuration Files
Expected Behavior
Running
terraform plan
with Terraform 0.11.14 and identical AWS provider version I get the following planActual Behavior
In Terraform 0.12.8 incorrectly tries to resolve the data source when running
terraform plan
Steps to Reproduce
terraform init
terraform apply
Additional Context
This doesn't appear to be an AWS provider issue because it's only affected by the upgrading to 0.12.x. Based on the documentation, terraform shouldn't try to resolve the data source until I go to apply the change. I can't find anywhere in the documentation around a change in behavior for data sources between 0.11.x and 0.12.x. Lastly, hashicorp/terraform-provider-aws#9947 appears to be a related issue, but I disagree with the expected behavior. This should not result in an error.
The text was updated successfully, but these errors were encountered: