[bug] AWS terraform provider 6.1.0 identity changed

[rchui]

Terraform and AWS Provider Version

18:58:17.989 STDOUT terraform: Terraform v1.12.2
18:58:17.989 STDOUT terraform: on linux_amd64

Affected Resource(s) or Data Source(s)

• aws_iam_role
• aws_s3_bucket

Expected Behavior

I would not expect an error when running terraform

Actual Behavior

I get an error

Relevant Error/Panic Output

18:58:32.317 STDOUT terraform: │ Error: Unexpected Identity Change: During the read operation, the Terraform Provider unexpectedly returned a different identity then the previously stored one.
18:58:32.317 STDOUT terraform: │ 
18:58:32.317 STDOUT terraform: │ This is always a problem with the provider and should be reported to the provider developer.
18:58:32.318 STDOUT terraform: │ 
18:58:32.318 STDOUT terraform: │ Current Identity: cty.ObjectVal(map[string]cty.Value{"account_id":cty.NullVal(cty.String), "name":cty.NullVal(cty.String)})
18:58:32.318 STDOUT terraform: │ 
18:58:32.318 STDOUT terraform: │ New Identity: cty.ObjectVal(map[string]cty.Value{"account_id":cty.StringVal("<account-id>"), "name":cty.StringVal("<name>")})
18:58:32.318 STDOUT terraform: │ 
18:58:32.318 STDOUT terraform: │   with module.airflow.aws_iam_role.execution,
18:58:32.318 STDOUT terraform: │   on ../../../modules/airflow/main.tf line 190, in resource "aws_iam_role" "execution":
18:58:32.318 STDOUT terraform: │  190: resource "aws_iam_role" "execution" {
18:58:32.318 STDOUT terraform: │ 
18:58:32.318 STDOUT terraform: ╵
18:58:32.318 STDOUT terraform: ╷
18:58:32.318 STDOUT terraform: │ Error: Unexpected Identity Change: During the read operation, the Terraform Provider unexpectedly returned a different identity then the previously stored one.
18:58:32.319 STDOUT terraform: │ 
18:58:32.319 STDOUT terraform: │ This is always a problem with the provider and should be reported to the provider developer.
18:58:32.319 STDOUT terraform: │ 
18:58:32.319 STDOUT terraform: │ Current Identity: cty.ObjectVal(map[string]cty.Value{"account_id":cty.NullVal(cty.String), "bucket":cty.NullVal(cty.String), "region":cty.NullVal(cty.String)})
18:58:32.319 STDOUT terraform: │ 
18:58:32.319 STDOUT terraform: │ New Identity: cty.ObjectVal(map[string]cty.Value{"account_id":cty.StringVal("<account-id>"), "bucket":cty.StringVal("<name>"), "region":cty.StringVal("<region>")})
18:58:32.319 STDOUT terraform: │ 
18:58:32.319 STDOUT terraform: │   with module.airflow.module.bucket.aws_s3_bucket.bucket,
18:58:32.319 STDOUT terraform: │   on .terraform/modules/airflow.bucket/modules/aws/s3_bucket/main.tf line 24, in resource "aws_s3_bucket" "bucket":
18:58:32.319 STDOUT terraform: │   24: resource "aws_s3_bucket" "bucket" {
18:58:32.319 STDOUT terraform: │ 
18:58:32.319 STDOUT terraform: ╵
18:58:39.727 STDOUT terraform: Operation failed: failed running terraform plan (exit 1)
18:58:41.882 STDOUT terraform: ::error::Terraform exited with code 1.

Sample Terraform Configuration

Click to expand configuration

Steps to Reproduce

I'm not necessarily what is causing this

Debug Logging

Click to expand log output

GenAI / LLM Assisted Development

n/a

Important Facts and References

No response

Would you like to implement a fix?

No

[github-actions]

Community Guidelines

This comment is added to every new Issue to provide quick reference to how the Terraform AWS Provider is maintained. Please review the information below, and thank you for contributing to the community that keeps the provider thriving! 🚀

Voting for Prioritization

• Please vote on this Issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize it.
• Please see our prioritization guide for additional information on how the maintainers handle prioritization.
• Please do not leave +1 or other comments that do not add relevant new information or questions; they generate extra noise for others following the Issue and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.
• For new resources and data sources, use skaff to generate scaffolding with comments detailing common expectations.

[cbortos-d2l]

I can confirm that I'm having the same issue with the latest provider: version 6.1.0.

I did a quick check where I pinned the version to 6.0.0. My terraform plan succeeded with it.

[breathingdust]

We are actively investigating this and are likely going to need to pull v6.1.0 from the Registry. We have a fix in mind but it will take some time to thoroughly test.

[NateBrady23]

Thanks @breathingdust! Also just a nit to add to this, the error message has a typo:

Error: Unexpected Identity Change: During the read operation, the Terraform Provider unexpectedly returned a different identity then the previously stored one.

"then" should be "than"

The immediate fix as mentioned above is to throw the required_providers block in to pin to 6.0.0:

terraform {
  required_version = ">= 1.0.0"
  
  required_providers {
    aws = {
      source  = "hashicorp/aws"
      version = "6.0.0"
    }
  }

and will likely need to run: terraform init -upgrade

[wfurney]

Yeah the latest release broke for me as well. Thanks!

[ewbankkit]

@NateBrady23 That error message is duplicated in https://github.com/hashicorp/terraform-plugin-sdk and https://github.com/hashicorp/terraform-plugin-framework if you want to open Issues (please do).