Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error in using data source aws_ec2_managed_prefix_list and filter from a list of many prefix list ids in Managed prefix lists #26004

Closed
arunsandu opened this issue Jul 27, 2022 · 7 comments · Fixed by #26683
Closed

Error in using data source aws_ec2_managed_prefix_list and filter from a list of many prefix list ids in Managed prefix lists #26004

arunsandu opened this issue Jul 27, 2022 · 7 comments · Fixed by #26683
Labels
bug Addresses a defect in current functionality. service/vpc Issues and PRs that pertain to the vpc service.
Milestone
v4.30.0

Comments

@arunsandu
Copy link

arunsandu commented Jul 27, 2022
edited

Hi there,

we are not able to use data source for aws_ec2_managed_prefix_list. please note that we have around 600 prefix list id in Managed prefix lists and tried to filter com.amazonaws.global.cloudfront.origin-facing using the prefix-list-name and got the below error.
would like to know if there are any limitations

Error: no managed prefix lists matched the given criteria

  with data.aws_ec2_managed_prefix_list.cloudfront,
  on data.tf line 32, in data "aws_ec2_managed_prefix_list" "cloudfront":
  32: data "aws_ec2_managed_prefix_list" "cloudfront" {

Upon checking the cloudtrail logs, we found "responseElements": null, for one of cal we made.

"requestParameters": {
        "DescribeManagedPrefixListsRequest": {
            "Filter": [
                {
                    "Value": {
                        "tag": 1,
                        "content": "[com.amazonaws.global.cloudfront.origin-facing"
                    },
                    "tag": 1,
                    "Name": "prefix-list-name"
                },
                {
                    "Value": {
                        "tag": 1,
                        "content": "AWS"
                    },
                    "tag": 2,
                    "Name": "owner-id"
                }
            ]
        }
    },
    "responseElements": null,

Terraform CLI and Terraform AWS Provider Version

Terraform v1.2.4
provider registry.terraform.io/hashicorp/aws v4.22.0

Affected Resource(s)

  • aws_ec2_managed_prefix_list

Terraform Configuration Files

Please include all Terraform configurations required to reproduce the bug. Bug reports without a functional reproduction may be closed without investigation.

data "aws_ec2_managed_prefix_list" "cloudfront" {
  filter {
    name   = "owner-id"
    values = ["AWS"]
  }

  filter {
    name   = "prefix-list-name"
    values = ["com.amazonaws.global.cloudfront.origin-facing"]
  }
}

Debug Output

➜  ec2_prefix terraform init                                                                     <aws:awsvikingsnp_admin>
2022-07-27T07:35:29.310-0700 [INFO]  Terraform version: 1.2.4
2022-07-27T07:35:29.310-0700 [DEBUG] using github.com/hashicorp/go-tfe v1.0.0
2022-07-27T07:35:29.310-0700 [DEBUG] using github.com/hashicorp/hcl/v2 v2.12.0
2022-07-27T07:35:29.310-0700 [DEBUG] using github.com/hashicorp/terraform-config-inspect v0.0.0-20210209133302-4fd17a0faac2
2022-07-27T07:35:29.310-0700 [DEBUG] using github.com/hashicorp/terraform-svchost v0.0.0-20200729002733-f050f53b9734
2022-07-27T07:35:29.310-0700 [DEBUG] using github.com/zclconf/go-cty v1.10.0
2022-07-27T07:35:29.310-0700 [INFO]  Go runtime version: go1.18.1
2022-07-27T07:35:29.310-0700 [INFO]  CLI args: []string{"/opt/homebrew/Cellar/tfenv/2.2.3/versions/1.2.4/terraform", "init"}
2022-07-27T07:35:29.310-0700 [DEBUG] Attempting to open CLI config file: /Users/arun.sandu/.terraformrc
2022-07-27T07:35:29.310-0700 [DEBUG] File doesn't exist, but doesn't need to. Ignoring.
2022-07-27T07:35:29.310-0700 [DEBUG] ignoring non-existing provider search directory terraform.d/plugins
2022-07-27T07:35:29.310-0700 [DEBUG] ignoring non-existing provider search directory /Users/arun.sandu/.terraform.d/plugins
2022-07-27T07:35:29.310-0700 [DEBUG] ignoring non-existing provider search directory /Users/arun.sandu/Library/Application Support/io.terraform/plugins
2022-07-27T07:35:29.310-0700 [DEBUG] ignoring non-existing provider search directory /Library/Application Support/io.terraform/plugins
2022-07-27T07:35:29.311-0700 [INFO]  CLI command args: []string{"init"}

Initializing the backend...
2022-07-27T07:35:29.314-0700 [DEBUG] New state was assigned lineage "3ac82b3a-1d54-8e88-6956-21cfab200b37"
2022-07-27T07:35:29.315-0700 [DEBUG] checking for provisioner in "."
2022-07-27T07:35:29.315-0700 [DEBUG] checking for provisioner in "/opt/homebrew/Cellar/tfenv/2.2.3/versions/1.2.4"

Initializing provider plugins...
- Reusing previous version of hashicorp/aws from the dependency lock file
2022-07-27T07:35:29.315-0700 [DEBUG] Service discovery for registry.terraform.io at https://registry.terraform.io/.well-known/terraform.json
2022-07-27T07:35:29.420-0700 [DEBUG] GET https://registry.terraform.io/v1/providers/hashicorp/aws/versions
2022-07-27T07:35:29.487-0700 [DEBUG] GET https://registry.terraform.io/v1/providers/hashicorp/aws/4.22.0/download/darwin/amd64
2022-07-27T07:35:29.548-0700 [DEBUG] GET https://releases.hashicorp.com/terraform-provider-aws/4.22.0/terraform-provider-aws_4.22.0_SHA256SUMS
2022-07-27T07:35:29.630-0700 [DEBUG] GET https://releases.hashicorp.com/terraform-provider-aws/4.22.0/terraform-provider-aws_4.22.0_SHA256SUMS.72D7468F.sig
- Installing hashicorp/aws v4.22.0...
2022-07-27T07:35:35.071-0700 [DEBUG] Provider signed by 34365D9472D7468F HashiCorp Security (hashicorp.com/security) <security@hashicorp.com>
- Installed hashicorp/aws v4.22.0 (signed by HashiCorp)

Terraform has been successfully initialized!

You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.

If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
➜  ec2_prefix terraform plan                                                                     <aws:awsvikingsnp_admin>
2022-07-27T07:35:43.635-0700 [INFO]  Terraform version: 1.2.4
2022-07-27T07:35:43.635-0700 [DEBUG] using github.com/hashicorp/go-tfe v1.0.0
2022-07-27T07:35:43.635-0700 [DEBUG] using github.com/hashicorp/hcl/v2 v2.12.0
2022-07-27T07:35:43.635-0700 [DEBUG] using github.com/hashicorp/terraform-config-inspect v0.0.0-20210209133302-4fd17a0faac2
2022-07-27T07:35:43.635-0700 [DEBUG] using github.com/hashicorp/terraform-svchost v0.0.0-20200729002733-f050f53b9734
2022-07-27T07:35:43.635-0700 [DEBUG] using github.com/zclconf/go-cty v1.10.0
2022-07-27T07:35:43.635-0700 [INFO]  Go runtime version: go1.18.1
2022-07-27T07:35:43.635-0700 [INFO]  CLI args: []string{"/opt/homebrew/Cellar/tfenv/2.2.3/versions/1.2.4/terraform", "plan"}
2022-07-27T07:35:43.635-0700 [DEBUG] Attempting to open CLI config file: /Users/arun.sandu/.terraformrc
2022-07-27T07:35:43.635-0700 [DEBUG] File doesn't exist, but doesn't need to. Ignoring.
2022-07-27T07:35:43.636-0700 [DEBUG] ignoring non-existing provider search directory terraform.d/plugins
2022-07-27T07:35:43.636-0700 [DEBUG] ignoring non-existing provider search directory /Users/arun.sandu/.terraform.d/plugins
2022-07-27T07:35:43.636-0700 [DEBUG] ignoring non-existing provider search directory /Users/arun.sandu/Library/Application Support/io.terraform/plugins
2022-07-27T07:35:43.638-0700 [DEBUG] ignoring non-existing provider search directory /Library/Application Support/io.terraform/plugins
2022-07-27T07:35:43.639-0700 [INFO]  CLI command args: []string{"plan"}
2022-07-27T07:35:43.639-0700 [DEBUG] New state was assigned lineage "7d49c03b-5fec-e811-87a9-7cec8f391ac2"
2022-07-27T07:35:44.676-0700 [DEBUG] checking for provisioner in "."
2022-07-27T07:35:44.676-0700 [DEBUG] checking for provisioner in "/opt/homebrew/Cellar/tfenv/2.2.3/versions/1.2.4"
2022-07-27T07:35:44.677-0700 [INFO]  backend/local: starting Plan operation
2022-07-27T07:35:44.679-0700 [DEBUG] created provider logger: level=debug
2022-07-27T07:35:44.679-0700 [INFO]  provider: configuring client automatic mTLS
2022-07-27T07:35:44.697-0700 [DEBUG] provider: starting plugin: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 args=[.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5]
2022-07-27T07:35:44.711-0700 [DEBUG] provider: plugin started: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26012
2022-07-27T07:35:44.711-0700 [DEBUG] provider: waiting for RPC address: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5
2022-07-27T07:36:02.207-0700 [INFO]  provider.terraform-provider-aws_v4.22.0_x5: configuring server automatic mTLS: timestamp=2022-07-27T07:36:02.206-0700
2022-07-27T07:36:02.216-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: plugin address: address=/var/folders/jt/zrt856c52_dbkpltt28llwm80000gq/T/plugin3095414796 network=unix timestamp=2022-07-27T07:36:02.216-0700
2022-07-27T07:36:02.216-0700 [DEBUG] provider: using plugin: version=5
2022-07-27T07:36:02.332-0700 [DEBUG] provider.stdio: received EOF, stopping recv loop: err="rpc error: code = Unavailable desc = transport is closing"
2022-07-27T07:36:02.337-0700 [DEBUG] provider: plugin process exited: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26012
2022-07-27T07:36:02.337-0700 [DEBUG] provider: plugin exited
2022-07-27T07:36:02.338-0700 [DEBUG] Building and walking validate graph
2022-07-27T07:36:02.338-0700 [DEBUG] adding implicit provider configuration provider["registry.terraform.io/hashicorp/aws"], implied first by data.aws_ec2_managed_prefix_list.cloudfront
2022-07-27T07:36:02.338-0700 [DEBUG] ProviderTransformer: "data.aws_ec2_managed_prefix_list.cloudfront" (*terraform.NodeValidatableResource) needs provider["registry.terraform.io/hashicorp/aws"]
2022-07-27T07:36:02.338-0700 [DEBUG] ReferenceTransformer: "provider[\"registry.terraform.io/hashicorp/aws\"]" references: []
2022-07-27T07:36:02.338-0700 [DEBUG] ReferenceTransformer: "data.aws_ec2_managed_prefix_list.cloudfront" references: []
2022-07-27T07:36:02.338-0700 [DEBUG] Starting graph walk: walkValidate
2022-07-27T07:36:02.339-0700 [DEBUG] created provider logger: level=debug
2022-07-27T07:36:02.339-0700 [INFO]  provider: configuring client automatic mTLS
2022-07-27T07:36:02.357-0700 [DEBUG] provider: starting plugin: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 args=[.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5]
2022-07-27T07:36:02.370-0700 [DEBUG] provider: plugin started: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26067
2022-07-27T07:36:02.370-0700 [DEBUG] provider: waiting for RPC address: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5
2022-07-27T07:36:02.466-0700 [INFO]  provider.terraform-provider-aws_v4.22.0_x5: configuring server automatic mTLS: timestamp=2022-07-27T07:36:02.466-0700
2022-07-27T07:36:02.475-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: plugin address: address=/var/folders/jt/zrt856c52_dbkpltt28llwm80000gq/T/plugin1597892428 network=unix timestamp=2022-07-27T07:36:02.475-0700
2022-07-27T07:36:02.475-0700 [DEBUG] provider: using plugin: version=5
2022-07-27T07:36:02.567-0700 [DEBUG] provider.stdio: received EOF, stopping recv loop: err="rpc error: code = Unavailable desc = transport is closing"
2022-07-27T07:36:02.572-0700 [DEBUG] provider: plugin process exited: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26067
2022-07-27T07:36:02.572-0700 [DEBUG] provider: plugin exited
2022-07-27T07:36:02.573-0700 [INFO]  backend/local: plan calling Plan
2022-07-27T07:36:02.573-0700 [DEBUG] Building and walking plan graph for NormalMode
2022-07-27T07:36:02.573-0700 [DEBUG] adding implicit provider configuration provider["registry.terraform.io/hashicorp/aws"], implied first by data.aws_ec2_managed_prefix_list.cloudfront (expand)
2022-07-27T07:36:02.573-0700 [DEBUG] ProviderTransformer: "data.aws_ec2_managed_prefix_list.cloudfront (expand)" (*terraform.nodeExpandPlannableResource) needs provider["registry.terraform.io/hashicorp/aws"]
2022-07-27T07:36:02.574-0700 [DEBUG] ReferenceTransformer: "data.aws_ec2_managed_prefix_list.cloudfront (expand)" references: []
2022-07-27T07:36:02.574-0700 [DEBUG] ReferenceTransformer: "provider[\"registry.terraform.io/hashicorp/aws\"]" references: []
2022-07-27T07:36:02.574-0700 [DEBUG] Starting graph walk: walkPlan
2022-07-27T07:36:02.574-0700 [DEBUG] created provider logger: level=debug
2022-07-27T07:36:02.574-0700 [INFO]  provider: configuring client automatic mTLS
2022-07-27T07:36:02.593-0700 [DEBUG] provider: starting plugin: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 args=[.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5]
2022-07-27T07:36:02.607-0700 [DEBUG] provider: plugin started: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26068
2022-07-27T07:36:02.607-0700 [DEBUG] provider: waiting for RPC address: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5
2022-07-27T07:36:02.708-0700 [INFO]  provider.terraform-provider-aws_v4.22.0_x5: configuring server automatic mTLS: timestamp=2022-07-27T07:36:02.707-0700
2022-07-27T07:36:02.716-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: plugin address: address=/var/folders/jt/zrt856c52_dbkpltt28llwm80000gq/T/plugin1552206433 network=unix timestamp=2022-07-27T07:36:02.716-0700
2022-07-27T07:36:02.717-0700 [DEBUG] provider: using plugin: version=5
2022-07-27T07:36:02.880-0700 [WARN]  ValidateProviderConfig from "provider[\"registry.terraform.io/hashicorp/aws\"]" changed the config value, but that value is unused
2022-07-27T07:36:02.884-0700 [INFO]  provider.terraform-provider-aws_v4.22.0_x5: [INFO] Retrieved credentials from "EnvConfigCredentials"
2022-07-27T07:36:02.884-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] Trying to get account information via sts:GetCallerIdentity
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go-v2] Request
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: POST / HTTP/1.1
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Host: sts.us-east-1.amazonaws.com
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: User-Agent: APN/1.0 HashiCorp/1.0 Terraform/1.2.4 (+https://www.terraform.io) terraform-provider-aws/dev (+https://registry.terraform.io/providers/hashicorp/aws) aws-sdk-go-v2/1.16.6 os/macos lang/go/1.17.6 md/GOOS/darwin md/GOARCH/amd64 api/sts/1.16.4
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 43
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Amz-Sdk-Invocation-Id: 361cc43b-b02e-4276-96b1-dfe6a2896b25
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Amz-Sdk-Request: attempt=1; max=25
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Authorization: AWS4-HMAC-SHA256 Credential=ASIAZV42Y5SOVLAT7X6H/20220727/us-east-1/sts/aws4_request, SignedHeaders=amz-sdk-invocation-id;amz-sdk-request;content-length;content-type;host;x-amz-date;x-amz-security-token, Signature=c6a6eb6b708e4159fec3af96231ce509786e35750cec988152729e6ce0268eef
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: application/x-www-form-urlencoded
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Date: 20220727T143602Z
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Security-Token: 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
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Accept-Encoding: gzip
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:02.887-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Action=GetCallerIdentity&Version=2011-06-15
2022-07-27T07:36:03.432-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go-v2] Response
2022-07-27T07:36:03.432-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: HTTP/1.1 200 OK
2022-07-27T07:36:03.432-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 426
2022-07-27T07:36:03.432-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: text/xml
2022-07-27T07:36:03.433-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Date: Wed, 27 Jul 2022 14:36:02 GMT
2022-07-27T07:36:03.433-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amzn-Requestid: d2937220-8bec-43c5-bba4-755565b02df7
2022-07-27T07:36:03.433-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:03.433-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: <GetCallerIdentityResponse xmlns="https://sts.amazonaws.com/doc/2011-06-15/">
2022-07-27T07:36:03.433-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   <GetCallerIdentityResult>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <Arn>arn:aws:sts::665507654813:assumed-role/Admin/AKSANDU</Arn>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <UserId>AROAIJDED3AQYM5J6HUI2:AKSANDU</UserId>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <Account>665507654813</Account>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   </GetCallerIdentityResult>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   <ResponseMetadata>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <RequestId>d2937220-8bec-43c5-bba4-755565b02df7</RequestId>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   </ResponseMetadata>
2022-07-27T07:36:03.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: </GetCallerIdentityResponse>
2022-07-27T07:36:03.436-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] Trying to get account information via sts:GetCallerIdentity
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go-v2] Request
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: POST / HTTP/1.1
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Host: sts.us-east-1.amazonaws.com
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: User-Agent: APN/1.0 HashiCorp/1.0 Terraform/1.2.4 (+https://www.terraform.io) terraform-provider-aws/dev (+https://registry.terraform.io/providers/hashicorp/aws) aws-sdk-go-v2/1.16.6 os/macos lang/go/1.17.6 md/GOOS/darwin md/GOARCH/amd64 api/sts/1.16.4
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 43
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Amz-Sdk-Invocation-Id: 847e3179-12b3-43fb-a2a6-471a78b3beee
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Amz-Sdk-Request: attempt=1; max=25
2022-07-27T07:36:03.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Authorization: AWS4-HMAC-SHA256 Credential=ASIAZV42Y5SOVLAT7X6H/20220727/us-east-1/sts/aws4_request, SignedHeaders=amz-sdk-invocation-id;amz-sdk-request;content-length;content-type;host;x-amz-date;x-amz-security-token, Signature=b783d2b3dca39c8ffaaf376645363f16a55dedbb3106d6fc76f1ca38ce7eb9fc
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: application/x-www-form-urlencoded
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Date: 20220727T143603Z
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Security-Token: IQoJb3JpZ2luX2VjEI///////////wEaCXVzLWVhc3QtMSJHMEUCIQDoJyX6ppB2X/MAEwhPLUXpA7nxWewXkzJnh81HWRhNRAIgFr9L0HsBtaa6Nh2RcZPHbmijw1Ang+qf9DU4y3oz17sqngII2P//////////ARACGgw2NjU1MDc2NTQ4MTMiDH0nW5S49z9TVV1ScSryAe7XhXde/bYrm+hsCXDRrHffdKg7Vm8oJ4kmRo0i2zyj0CAfZ3wc+QBqMAByj/oxa4FOWbR8De0TGgDXNgtN2vO4lY9Bh5VZ397otcbJiezkEDzB98ogqKQRAjTW0Jv8a1zZhSJISlN5D00UfGca4br1vsIUpDAQlHbH3+qSBb5IZdrc+6Kvg5TnCdSZZhNMYKFM4H8PT8et9qgEP36jGKv/SGN78OXtUKZF+4tEOhdB7Uk62nodroushV9jG4qJzWzKULoejb/CfH7AKU4vEgXAZglxK07BgDA9FOUwFPyKC66Vt4cUT5eAGnVCEb5B/jcsMLaYhZcGOp0BrAmEkKOxnIo/bCj6qJip+y1U275j+4LSB1ke1PDrf5faLgHhuWHvToI9CrMMBB2A7xWwIQuczQfDxRXhYxSzQpGkSp3pPdYk+UhGsPN4543xNQSYaeg4gPRdDfdJv+aGrqjnyv00FqC7i7bx7qVT0scpHmddNIIk2quxgw8lmz0VPOFbHtMfiQMZ0yBnJ+kNpasIpNlsnG40SSyLzg==
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Accept-Encoding: gzip
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:03.438-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Action=GetCallerIdentity&Version=2011-06-15
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go-v2] Response
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: HTTP/1.1 200 OK
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 426
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: text/xml
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Date: Wed, 27 Jul 2022 14:36:02 GMT
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amzn-Requestid: a469ea13-9af3-40b3-b938-989e4101681c
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: <GetCallerIdentityResponse xmlns="https://sts.amazonaws.com/doc/2011-06-15/">
2022-07-27T07:36:03.521-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   <GetCallerIdentityResult>
2022-07-27T07:36:03.537-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <Arn>arn:aws:sts::665507654813:assumed-role/Admin/AKSANDU</Arn>
2022-07-27T07:36:03.537-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <UserId>AROAIJDED3AQYM5J6HUI2:AKSANDU</UserId>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <Account>665507654813</Account>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   </GetCallerIdentityResult>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   <ResponseMetadata>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <RequestId>a469ea13-9af3-40b3-b938-989e4101681c</RequestId>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:   </ResponseMetadata>
2022-07-27T07:36:03.538-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: </GetCallerIdentityResponse>
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] DEBUG: Request ec2/DescribeAccountAttributes Details:
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: ---[ REQUEST POST-SIGN ]-----------------------------
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: POST / HTTP/1.1
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Host: ec2.us-east-1.amazonaws.com
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: User-Agent: APN/1.0 HashiCorp/1.0 Terraform/1.2.4 (+https://www.terraform.io) terraform-provider-aws/dev (+https://registry.terraform.io/providers/hashicorp/aws) aws-sdk-go/1.44.46 (go1.17.6; darwin; amd64)
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 87
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Authorization: AWS4-HMAC-SHA256 Credential=ASIAZV42Y5SOVLAT7X6H/20220727/us-east-1/ec2/aws4_request, SignedHeaders=content-length;content-type;host;x-amz-date;x-amz-security-token, Signature=5fcbaddd3c1b24525194dae420342b81e62e7c9f3113456e0e47520d527d675d
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: application/x-www-form-urlencoded; charset=utf-8
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Date: 20220727T143603Z
2022-07-27T07:36:03.556-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Security-Token: IQoJb3JpZ2luX2VjEI///////////wEaCXVzLWVhc3QtMSJHMEUCIQDoJyX6ppB2X/MAEwhPLUXpA7nxWewXkzJnh81HWRhNRAIgFr9L0HsBtaa6Nh2RcZPHbmijw1Ang+qf9DU4y3oz17sqngII2P//////////ARACGgw2NjU1MDc2NTQ4MTMiDH0nW5S49z9TVV1ScSryAe7XhXde/bYrm+hsCXDRrHffdKg7Vm8oJ4kmRo0i2zyj0CAfZ3wc+QBqMAByj/oxa4FOWbR8De0TGgDXNgtN2vO4lY9Bh5VZ397otcbJiezkEDzB98ogqKQRAjTW0Jv8a1zZhSJISlN5D00UfGca4br1vsIUpDAQlHbH3+qSBb5IZdrc+6Kvg5TnCdSZZhNMYKFM4H8PT8et9qgEP36jGKv/SGN78OXtUKZF+4tEOhdB7Uk62nodroushV9jG4qJzWzKULoejb/CfH7AKU4vEgXAZglxK07BgDA9FOUwFPyKC66Vt4cUT5eAGnVCEb5B/jcsMLaYhZcGOp0BrAmEkKOxnIo/bCj6qJip+y1U275j+4LSB1ke1PDrf5faLgHhuWHvToI9CrMMBB2A7xWwIQuczQfDxRXhYxSzQpGkSp3pPdYk+UhGsPN4543xNQSYaeg4gPRdDfdJv+aGrqjnyv00FqC7i7bx7qVT0scpHmddNIIk2quxgw8lmz0VPOFbHtMfiQMZ0yBnJ+kNpasIpNlsnG40SSyLzg==
2022-07-27T07:36:03.557-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Accept-Encoding: gzip
2022-07-27T07:36:03.557-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:03.557-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Action=DescribeAccountAttributes&AttributeName.1=supported-platforms&Version=2016-11-15
2022-07-27T07:36:03.557-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: -----------------------------------------------------
2022-07-27T07:36:04.114-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] DEBUG: Response ec2/DescribeAccountAttributes Details:
2022-07-27T07:36:04.116-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: ---[ RESPONSE ]--------------------------------------
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: HTTP/1.1 200 OK
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 540
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Cache-Control: no-cache, no-store
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: text/xml;charset=UTF-8
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Date: Wed, 27 Jul 2022 14:36:03 GMT
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Server: AmazonEC2
2022-07-27T07:36:04.117-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Strict-Transport-Security: max-age=31536000; includeSubDomains
2022-07-27T07:36:04.119-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amzn-Requestid: ae99ba37-739a-49c2-b300-72a476432bc7
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: -----------------------------------------------------
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] <?xml version="1.0" encoding="UTF-8"?>
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: <DescribeAccountAttributesResponse xmlns="http://ec2.amazonaws.com/doc/2016-11-15/">
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <requestId>ae99ba37-739a-49c2-b300-72a476432bc7</requestId>
2022-07-27T07:36:04.120-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <accountAttributeSet>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:         <item>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:             <attributeName>supported-platforms</attributeName>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:             <attributeValueSet>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:                 <item>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:                     <attributeValue>VPC</attributeValue>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:                 </item>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:             </attributeValueSet>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:         </item>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     </accountAttributeSet>
2022-07-27T07:36:04.121-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: </DescribeAccountAttributesResponse>
2022-07-27T07:36:04.132-0700 [DEBUG] Resource instance state not found for node "data.aws_ec2_managed_prefix_list.cloudfront", instance data.aws_ec2_managed_prefix_list.cloudfront
2022-07-27T07:36:04.135-0700 [DEBUG] ReferenceTransformer: "data.aws_ec2_managed_prefix_list.cloudfront" references: []
data.aws_ec2_managed_prefix_list.cloudfront: Reading...
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] DEBUG: Request ec2/DescribeManagedPrefixLists Details:
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: ---[ REQUEST POST-SIGN ]-----------------------------
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: POST / HTTP/1.1
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Host: ec2.us-east-1.amazonaws.com
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: User-Agent: APN/1.0 HashiCorp/1.0 Terraform/1.2.4 (+https://www.terraform.io) terraform-provider-aws/dev (+https://registry.terraform.io/providers/hashicorp/aws) aws-sdk-go/1.44.46 (go1.17.6; darwin; amd64)
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Length: 190
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Authorization: AWS4-HMAC-SHA256 Credential=ASIAZV42Y5SOVLAT7X6H/20220727/us-east-1/ec2/aws4_request, SignedHeaders=content-length;content-type;host;x-amz-date;x-amz-security-token, Signature=2c09eb60a1e0524183d7d05a8451ba8ce827b3dae2e3bbf0e2d970d139a1f2ad
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: application/x-www-form-urlencoded; charset=utf-8
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Date: 20220727T143604Z
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amz-Security-Token: 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
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Accept-Encoding: gzip
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Action=DescribeManagedPrefixLists&Filter.1.Name=prefix-list-name&Filter.1.Value.1=com.amazonaws.global.cloudfront.origin-facing&Filter.2.Name=owner-id&Filter.2.Value.1=AWS&Version=2016-11-15
2022-07-27T07:36:04.148-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: -----------------------------------------------------
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] DEBUG: Response ec2/DescribeManagedPrefixLists Details:
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: ---[ RESPONSE ]--------------------------------------
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: HTTP/1.1 200 OK
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Transfer-Encoding: chunked
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Cache-Control: no-cache, no-store
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Content-Type: text/xml;charset=UTF-8
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Date: Wed, 27 Jul 2022 14:36:04 GMT
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Server: AmazonEC2
2022-07-27T07:36:04.435-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Strict-Transport-Security: max-age=31536000; includeSubDomains
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: Vary: accept-encoding
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: X-Amzn-Requestid: 614274eb-4b98-46f2-9ff1-8cd879d0fe48
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: -----------------------------------------------------
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] <?xml version="1.0" encoding="UTF-8"?>
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: <DescribeManagedPrefixListsResponse xmlns="http://ec2.amazonaws.com/doc/2016-11-15/">
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <requestId>614274eb-4b98-46f2-9ff1-8cd879d0fe48</requestId>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <nextToken>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</nextToken>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <prefixListSet/>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: </DescribeManagedPrefixListsResponse>
2022-07-27T07:36:04.443-0700 [ERROR] vertex "data.aws_ec2_managed_prefix_list.cloudfront" error: no managed prefix lists matched the given criteria
2022-07-27T07:36:04.443-0700 [ERROR] vertex "data.aws_ec2_managed_prefix_list.cloudfront" error: no managed prefix lists matched the given criteria
2022-07-27T07:36:04.443-0700 [ERROR] vertex "data.aws_ec2_managed_prefix_list.cloudfront (expand)" error: no managed prefix lists matched the given criteria
2022-07-27T07:36:04.445-0700 [INFO]  backend/local: plan operation completed
╷
│ Error: no managed prefix lists matched the given criteria
│
│   with data.aws_ec2_managed_prefix_list.cloudfront,
│   on data.tf line 1, in data "aws_ec2_managed_prefix_list" "cloudfront":
│    1: data "aws_ec2_managed_prefix_list" "cloudfront" {
│
╵
2022-07-27T07:36:04.456-0700 [DEBUG] provider.stdio: received EOF, stopping recv loop: err="rpc error: code = Unavailable desc = transport is closing"
2022-07-27T07:36:04.464-0700 [DEBUG] provider: plugin process exited: path=.terraform/providers/registry.terraform.io/hashicorp/aws/4.22.0/darwin_amd64/terraform-provider-aws_v4.22.0_x5 pid=26068
2022-07-27T07:36:04.464-0700 [DEBUG] provider: plugin exited

Panic Output

ec2_managed_list_api_debuglog.txt

Expected Behavior

use data source for aws_ec2_managed_prefix_list and get the response

Actual Behavior

Error: no managed prefix lists matched the given criteria

  with data.aws_ec2_managed_prefix_list.cloudfront,
  on data.tf line 32, in data "aws_ec2_managed_prefix_list" "cloudfront":
  32: data "aws_ec2_managed_prefix_list" "cloudfront" {

Steps to Reproduce

  1. Have enough prefix list id in Managed prefix lists. we came across this issue when having 600+ prefix lists.
  2. use the below
    data.tf
data "aws_ec2_managed_prefix_list" "cloudfront" {
  filter {
    name   = "owner-id"
    values = ["AWS"]
  }

  filter {
    name   = "prefix-list-name"
    values = ["com.amazonaws.global.cloudfront.origin-facing"]
  }
}
  1. terraform init
  2. terraform plan

Important Factoids

References

  • #0000
@github-actions github-actions bot added needs-triage Waiting for first response or review from a maintainer. service/vpc Issues and PRs that pertain to the vpc service. labels Jul 27, 2022
@justinretzolk
Copy link
Member

Hey @arunsandu 👋 Thank you for taking the time to raise this! I used your example configuration and was able to retrieve the data as expected. With that in mind, I took a look at Cloudtrail after the fact and noticed something about the log. In my cased, this showed up in Cloudtrail as:

    "requestParameters": {
        "DescribeManagedPrefixListsRequest": {
            "Filter": [
                {
                    "Value": {
                        "tag": 1,
                        "content": "com.amazonaws.global.cloudfront.origin-facing"
                    },
                    "tag": 1,
                    "Name": "prefix-list-name"
                },
                {
                    "Value": {
                        "tag": 1,
                        "content": "AWS"
                    },
                    "tag": 2,
                    "Name": "owner-id"
                }
            ]
        }
    },

I noticed that in your Cloudtrail log, the content for the prefix-list-name tag was [com.amazonaws.global.cloudfront.origin-facing", while mine showed as "com.amazonaws.global.cloudfront.origin-facing". Was there perhaps a typo in the configuration that may have led to this extra [ being added?

@justinretzolk justinretzolk added waiting-response Maintainers are waiting on response from community or contributor. and removed needs-triage Waiting for first response or review from a maintainer. labels Jul 27, 2022
@codezninja
Copy link

codezninja commented Jul 28, 2022
edited

@justinretzolk, I'm a peer of @arunsandu, I think that is a typo. Looking at the cloudtrail log I have the following (sanitzied)

{
    "eventVersion": "1.08",
    "userIdentity": {
        "type": "AssumedRole",
        "principalId": "XXXXXX:XXXXX",
        "arn": "arn:aws:sts::XXXXXX:assumed-role/XXXXX/XXXXX",
        "accountId": "XXXXXX",
        "accessKeyId": "XXXXXX",
        "sessionContext": {
            "sessionIssuer": {
                "type": "Role",
                "principalId": "XXXXXX",
                "arn": "arn:aws:iam::XXXXX:role/XXXXXX",
                "accountId": "XXXXX",
                "userName": "XXXXX"
            },
            "webIdFederationData": {},
            "attributes": {
                "creationDate": "2022-07-28T12:01:01Z",
                "mfaAuthenticated": "false"
            }
        }
    },
    "eventTime": "2022-07-28T12:03:17Z",
    "eventSource": "ec2.amazonaws.com",
    "eventName": "DescribeManagedPrefixLists",
    "awsRegion": "us-east-1",
    "sourceIPAddress": "xxxxxxxxx",
    "userAgent": "APN/1.0 HashiCorp/1.0 Terraform/1.2.5 (+https://www.terraform.io) terraform-provider-aws/dev (+https://registry.terraform.io/providers/hashicorp/aws) aws-sdk-go/1.44.57 (go1.17.12; darwin; amd64)",
    "requestParameters": {
        "DescribeManagedPrefixListsRequest": {
            "Filter": [
                {
                    "Value": {
                        "tag": 1,
                        "content": "com.amazonaws.global.cloudfront.origin-facing"
                    },
                    "tag": 1,
                    "Name": "prefix-list-name"
                },
                {
                    "Value": {
                        "tag": 1,
                        "content": "AWS"
                    },
                    "tag": 2,
                    "Name": "owner-id"
                }
            ]
        }
    },
    "responseElements": null,
    "requestID": "xxxxxxxx",
    "eventID": "xxxxxxxxx",
    "readOnly": true,
    "eventType": "AwsApiCall",
    "managementEvent": true,
    "recipientAccountId": "xxxxxxxxx",
    "eventCategory": "Management",
    "tlsDetails": {
        "tlsVersion": "TLSv1.2",
        "cipherSuite": "ECDHE-RSA-AES128-GCM-SHA256",
        "clientProvidedHostHeader": "ec2.us-east-1.amazonaws.com"
    }
}

@github-actions github-actions bot removed the waiting-response Maintainers are waiting on response from community or contributor. label Jul 28, 2022
@ewbankkit ewbankkit added the bug Addresses a defect in current functionality. label Jul 28, 2022
@arunsandu
Copy link
Author

Hey @arunsandu 👋 Thank you for taking the time to raise this! I used your example configuration and was able to retrieve the data as expected. With that in mind, I took a look at Cloudtrail after the fact and noticed something about the log. In my cased, this showed up in Cloudtrail as:

    "requestParameters": {
        "DescribeManagedPrefixListsRequest": {
            "Filter": [
                {
                    "Value": {
                        "tag": 1,
                        "content": "com.amazonaws.global.cloudfront.origin-facing"
                    },
                    "tag": 1,
                    "Name": "prefix-list-name"
                },
                {
                    "Value": {
                        "tag": 1,
                        "content": "AWS"
                    },
                    "tag": 2,
                    "Name": "owner-id"
                }
            ]
        }
    },

I noticed that in your Cloudtrail log, the content for the prefix-list-name tag was [com.amazonaws.global.cloudfront.origin-facing", while mine showed as "com.amazonaws.global.cloudfront.origin-facing". Was there perhaps a typo in the configuration that may have led to this extra [ being added?

my apologies, that is a typo.

@justinretzolk
Copy link
Member

Hey @codezninja and @arunsandu 👋 Thank you for confirming that was a typo! On another inspection, I think this may be a bug, so I'm going to mark it as such so that a member of the team or community may take a look at it when possible.

For whoever picks this up:

The following bit of the debug includes a <nexttoken>, but seems to be lacking the <prefixListSet> (though it does have <prefixListSet/>). This AWS document indicates that the MaxResults for DescribeManagedPrefixLists is 100 (this issue indicates that there are ±600 in this case), and that the NextToken indicates there are additional pages. Perhaps the data source should use ec2.DescribeManagedPrefixListPagesWithContext rather than ec2.DescribeManagedPrefixListsWithContext as it currently does?

2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: [DEBUG] [aws-sdk-go] <?xml version="1.0" encoding="UTF-8"?>
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: <DescribeManagedPrefixListsResponse xmlns="http://ec2.amazonaws.com/doc/2016-11-15/">
2022-07-27T07:36:04.437-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <requestId>614274eb-4b98-46f2-9ff1-8cd879d0fe48</requestId>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <nextToken>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</nextToken>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5:     <prefixListSet/>
2022-07-27T07:36:04.439-0700 [DEBUG] provider.terraform-provider-aws_v4.22.0_x5: </DescribeManagedPrefixListsResponse>

@aleksanderaleksic
Copy link
Contributor

aleksanderaleksic commented Sep 7, 2022
edited

I can confirm @justinretzolk observation with the max results being 100 is the issue.
After changing to ec2.DescribeManagedPrefixListPagesWithContext it solved the issue.
Gonna make a PR for this now.

I am not that experienced with the AWS APIs but I would expect that when you provide a server-side filter in the input, the results would be part of the first "page" and not the N next. Anyways that's outside of the provider's scope, other issues might be related to this.

@aleksanderaleksic aleksanderaleksic mentioned this issue Sep 7, 2022
Merged
@github-actions github-actions bot added this to the v4.30.0 milestone Sep 7, 2022
@github-actions
Copy link

github-actions bot commented Sep 9, 2022

This functionality has been released in v4.30.0 of the Terraform AWS Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you!

@github-actions
Copy link

github-actions bot commented Oct 9, 2022

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 9, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug Addresses a defect in current functionality. service/vpc Issues and PRs that pertain to the vpc service.
Projects
None yet
Milestone
v4.30.0
5 participants
@ewbankkit @codezninja @aleksanderaleksic @arunsandu @justinretzolk