[aws_autoscaling_group] Provider produced inconsistent final plan (for tags) #14085

yorinasub17 · 2020-07-08T02:19:26Z

Community Note

Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform Version

%~> terraform version
Terraform v0.12.25
+ provider.aws v2.69.0
+ provider.random v2.3.0

Also tested and repro'd with:

terraform v0.12.28
terraform v0.13.0-beta3

Affected Resource(s)

aws_autoscaling_group

Terraform Configuration Files

provider "aws" {
  region = "us-east-1"
}

variable "ami_id" {
  # Ubuntu 16.04 image in us-east-1
  default = "ami-0fcfd45b96222a2ae"
}

# Set up autoscaling group

resource "aws_autoscaling_group" "web" {
  max_size             = 1
  min_size             = 1
  desired_capacity     = 1
  name                 = aws_launch_configuration.web_conf.name
  launch_configuration = aws_launch_configuration.web_conf.name
  vpc_zone_identifier  = data.aws_subnet_ids.default.ids

  tags = [
    {
      key                 = "Name"
      value               = "servers"
      propagate_at_launch = true
    },
    {
      key                 = "LCNAME1"
      value               = aws_launch_configuration.web_conf.name
      propagate_at_launch = true
    },
    {
      key                 = "LCNAME2"
      value               = aws_launch_configuration.web_conf.name
      propagate_at_launch = true
    },
  ]
}

resource "aws_launch_configuration" "web_conf" {
  name_prefix   = "web"
  image_id      = var.ami_id
  instance_type = "t2.micro"
}

# Look up default VPC and subnet to deploy server into

data "aws_vpc" "default" {
  default = true
}

data "aws_subnet_ids" "default" {
  vpc_id = data.aws_vpc.default.id
}

Expected Behavior

Apply completes successfully, creating the Autoscaling Group.

Actual Behavior

The first apply fails with the following error message:

Error: Provider produced inconsistent final plan
When expanding the plan for aws_autoscaling_group.web to include new values
learned so far during apply, provider "registry.terraform.io/-/aws" produced
an invalid new value for .tags: length changed from 2 to 3.

This is a bug in the provider, which should be reported in the provider's own
issue tracker.

Note that the second apply succeeds, presumably because the values for all the tags are known at this point.

Steps to Reproduce

terraform init
terraform apply

The text was updated successfully, but these errors were encountered:

yorinasub17 · 2020-07-08T02:24:17Z

NOTE: I have tried rolling back the provider versions, and the first known version that works is v2.63.0. v2.64.0 - v2.69.0 have all failed with the same error.

yorinasub17 · 2020-07-08T03:02:18Z

After comparing the debug logs between v2.63.0 and v2.64.0, I noticed the following difference:

The relevant log starts with:

2020/07/07 21:55:57 [WARN] Provider "registry.terraform.io/-/aws" produced an invalid plan for aws_autoscaling_group.web, but we are tolerating it because it
is using the legacy plugin SDK.
    The following problems may be the cause of any confusing errors from downstream operations:

v2.63.0


- .tags: planned value
cty.ListVal(
  []cty.Value{
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("Name"), "propagate_at_launch":cty.StringVal("true"), "value":cty.StringVal("servers")}),
    cty.UnknownVal(cty.Map(cty.String)),
    cty.UnknownVal(cty.Map(cty.String))
  }
)
does not match config value
cty.ListVal(
  []cty.Value{
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("Name"), "propagate_at_launch":cty.StringVal("true"), "value":cty.StringVal("servers")}),
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("LCNAME1"), "propagate_at_launch":cty.StringVal("true"), "value":cty.UnknownVal(cty.String)}),
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("LCNAME2"), "propagate_at_launch":cty.StringVal("true"), "value":cty.UnknownVal(cty.String)}),
  }
)

v2.64.0

- .tags: planned value
cty.SetVal(
  []cty.Value{
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("Name"), "propagate_at_launch":cty.StringVal("true"), "value":cty.StringVal("servers")}),
    cty.UnknownVal(cty.Map(cty.String)),
  }
)
does not match config value
cty.SetVal(
  []cty.Value{
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("LCNAME1"), "propagate_at_launch":cty.StringVal("true"), "value":cty.UnknownVal(cty.String)}),
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("LCNAME2"), "propagate_at_launch":cty.StringVal("true"), "value":cty.UnknownVal(cty.String)}),
    cty.MapVal(map[string]cty.Value{"key":cty.StringVal("Name"), "propagate_at_launch":cty.StringVal("true"), "value":cty.StringVal("servers")}),
  }
)

So it appears that the transition to using sets for the tags has caused an issue with tags that depend on other resource values that are not known at plan time because those unknown vals (cty.UnknownVal(cty.String)) get deduped and are collapsed down.

yorinasub17 · 2020-07-08T03:38:29Z

Apologies for the spam - I deleted the message below when I thought the workaround didn't work when I integrated it into our real modules, but that was just a misunderstanding of the error message.

Restored message:

Ok I found a workaround by using tag blocks instead of tags attribute:

resource "aws_autoscaling_group" "web" {
  max_size             = 1
  min_size             = 1
  desired_capacity     = 1
  name                 = aws_launch_configuration.web_conf.name
  launch_configuration = aws_launch_configuration.web_conf.name
  vpc_zone_identifier  = data.aws_subnet_ids.default.ids

  dynamic "tag" {
    for_each = local.tags
    content {
      key                 = tag.value.key
      value               = tag.value.value
      propagate_at_launch = tag.value.propagate_at_launch
    }
  }
}

locals {
  tags = [
    {
      key                 = "Name"
      value               = "servers"
      propagate_at_launch = true
    },
    {
      key                 = "LCNAME1"
      value               = aws_launch_configuration.web_conf.name
      propagate_at_launch = true
    },
    {
      key                 = "LCNAME2"
      value               = aws_launch_configuration.web_conf.name
      propagate_at_launch = true
    },
  ]
}

anGie44 · 2020-07-08T15:50:31Z

hi @yorinasub17, thank you for reporting this issue and working through an alternative here! making a quick pass through your config, I can see the references to aws_launch_configuration.web_conf.name in the value key of the tags list could be the culprit. From the logs in your previous comment, terraform picks up only on the first tag where value is a literal quoted string "servers" but for the 2 subsequent tags which have expressions intended to be a references, they seemed to be ignored . Wrapping the expressions with parentheses, however, enables terraform to pick up on all 3 tags at plan time :)
Example:

{
      key                 = "LCNAME1"
      value               = (aws_launch_configuration.web_conf.name)
      propagate_at_launch = true
    },
...

Snippet of plan w/original config

+ tags                      = [
          + {
              + "key"                 = "Name"
              + "propagate_at_launch" = "true"
              + "value"               = "servers"
            },
          + (known after apply),
        ]
      + target_group_arns         = (known after apply)

vs. Snippet of plan w/original config + wrapping exprs. w/parens:

 + tags                      = [
          + {
              + "key"                 = "LCNAME1"
              + "propagate_at_launch" = "true"
              + "value"               = "web54564564564"
            },
          + {
              + "key"                 = "LCNAME2"
              + "propagate_at_launch" = "true"
              + "value"               = "web54654654564"
            },
          + {
              + "key"                 = "Name"
              + "propagate_at_launch" = "true"
              + "value"               = "servers"
            },
        ]

yorinasub17 · 2020-07-18T00:56:01Z

@anGie44 Thanks for taking the time to look at this, and apologies for taking time to respond.

I just tried what you provided (with the parens), and unfortunately I still have the same issue. Looking at your plan, it looks like you tried the apply with parens on a second run based on the fact that the plan has the value resolved. In the initial run, those values should be unknowable because the launch configuration is not created yet.

Can you try running destroy to clear the state and then running plan with the parens? You should get the same plan as without parens in the initial run.

``` Error: Provider produced inconsistent final plan When expanding the plan for module.eks.aws_autoscaling_group.workers[0] to include new values learned so far during apply, provider "registry.terraform.io/hashicorp/aws" produced an invalid new value for .tags: length changed from 4 to 6. ``` hashicorp/terraform-provider-aws#14085

Additional support for Terraform v0.13 and aws v3! - The update to the vpc module in examples was, strictly speaking, unnecessary but it adds the terraform block with supported versions. - Update for iam module in the example was very necessary to support new versions - Workaround for "Provider produced inconsistent final plan" when creating ASGs at the same time as the cluster. See hashicorp/terraform-provider-aws#14085 for full details. - Blacklist 0.13.0 as it was too strict when migrating from aws v2 to v3 about dropped attributes.

…rm-aws-modules#976) Additional support for Terraform v0.13 and aws v3! - The update to the vpc module in examples was, strictly speaking, unnecessary but it adds the terraform block with supported versions. - Update for iam module in the example was very necessary to support new versions - Workaround for "Provider produced inconsistent final plan" when creating ASGs at the same time as the cluster. See hashicorp/terraform-provider-aws#14085 for full details. - Blacklist 0.13.0 as it was too strict when migrating from aws v2 to v3 about dropped attributes.

An unsolved regression in the terraform-provider-aws ( hashicorp/terraform-provider-aws#14085 ) prevents the creation of autoscaling groups using terraform.

* 📌 version updates for all major components | #85 Covering the following dependencies: - nomad: 1.0.2 - consul: 1.9.1 - fabio - terraform modules - terraform-aws-consul module version 0.8.2 - packer definition - terraform: 0.14.4 * ♻️ Migrate from SSH to SSM and restructuring | #83 - Remove SSH dependency - Using AWS System Manager Session Manager instead of SSH access. * ✨ AMI testing during creation - Checking the AMI during the packer build step using goss. * ✨ restart nomad service on instance, solves #62 * 👷 added linting * 🐛 fixing aws provider version due to autoscaling issue An unsolved regression in the terraform-provider-aws ( hashicorp/terraform-provider-aws#14085 ) prevents the creation of autoscaling groups using terraform. * 💩 using fork to unblock waiting for PR | #85 Waiting for PR to be merge: hashicorp/terraform-aws-nomad#85 Co-authored-by: Matthias Scholz <[email protected]> Co-authored-by: Matthias Scholz <[email protected]>

…-aws#14085

Additional support for Terraform v0.13 and aws v3! - The update to the vpc module in examples was, strictly speaking, unnecessary but it adds the terraform block with supported versions. - Update for iam module in the example was very necessary to support new versions - Workaround for "Provider produced inconsistent final plan" when creating ASGs at the same time as the cluster. See hashicorp/terraform-provider-aws#14085 for full details. - Blacklist 0.13.0 as it was too strict when migrating from aws v2 to v3 about dropped attributes.

github-actions · 2024-06-24T17:41:58Z

Marking this issue as stale due to inactivity. This helps our maintainers find and focus on the active issues. If this issue receives no comments in the next 30 days it will automatically be closed. Maintainers can also remove the stale label.

If this issue was automatically closed and you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thank you!

dezren39 · 2024-07-22T14:44:23Z

still an issue

ghost added service/autoscaling Issues and PRs that pertain to the autoscaling service. service/ec2 Issues and PRs that pertain to the ec2 service. labels Jul 8, 2020

github-actions bot added the needs-triage Waiting for first response or review from a maintainer. label Jul 8, 2020

anGie44 removed the needs-triage Waiting for first response or review from a maintainer. label Jul 8, 2020

anGie44 self-assigned this Jul 10, 2020

dpiddockcmp mentioned this issue Aug 14, 2020

fix: More compatibility fixes for Terraform v0.13 and aws v3 terraform-aws-modules/terraform-aws-eks#976

Merged

2 tasks

ewbankkit mentioned this issue Aug 17, 2020

Error reported during autoscaling group creation #14682

Closed

yorinasub17 mentioned this issue Nov 5, 2020

Failure when plan changes during apply-all gruntwork-io/terragrunt#1419

Closed

ewbankkit mentioned this issue Feb 3, 2021

aws_autoscaling_group collapses all tags with values unspecified until apply into a single value, resulting in an inconsistent plan on apply #17416

Closed

jbardin mentioned this issue Apr 12, 2021

Providers cannot always correctly plan values within dynamic blocks hashicorp/terraform#28340

Closed

mkielar mentioned this issue Apr 14, 2021

Provider produced inconsistent final plan - tags_all errors without using default_tags block #18366

Closed

chadgeary added a commit to chadgeary/nifi that referenced this issue Apr 30, 2021

simplify ASG tags, SSM target, and avoid hashicorp/terraform-provider…

3b69cb6

…-aws#14085

anGie44 added the bug Addresses a defect in current functionality. label Jun 11, 2021

anGie44 removed their assignment Jun 23, 2022

github-actions bot added the stale Old or inactive issues managed by automation, if no further action taken these will get closed. label Jun 24, 2024

github-actions bot removed the stale Old or inactive issues managed by automation, if no further action taken these will get closed. label Jul 22, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[aws_autoscaling_group] Provider produced inconsistent final plan (for tags) #14085

[aws_autoscaling_group] Provider produced inconsistent final plan (for tags) #14085

yorinasub17 commented Jul 8, 2020 •

edited

Loading

yorinasub17 commented Jul 8, 2020

yorinasub17 commented Jul 8, 2020

yorinasub17 commented Jul 8, 2020

anGie44 commented Jul 8, 2020 •

edited

Loading

yorinasub17 commented Jul 18, 2020

github-actions bot commented Jun 24, 2024

dezren39 commented Jul 22, 2024

[aws_autoscaling_group] Provider produced inconsistent final plan (for tags) #14085

[aws_autoscaling_group] Provider produced inconsistent final plan (for tags) #14085

Comments

yorinasub17 commented Jul 8, 2020 • edited Loading

Community Note

Terraform Version

Affected Resource(s)

Terraform Configuration Files

Expected Behavior

Actual Behavior

Steps to Reproduce

yorinasub17 commented Jul 8, 2020

yorinasub17 commented Jul 8, 2020

yorinasub17 commented Jul 8, 2020

anGie44 commented Jul 8, 2020 • edited Loading

yorinasub17 commented Jul 18, 2020

github-actions bot commented Jun 24, 2024

dezren39 commented Jul 22, 2024

yorinasub17 commented Jul 8, 2020 •

edited

Loading

anGie44 commented Jul 8, 2020 •

edited

Loading