Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

digitalocean_ssh_key keeps being forced as a new resource #7889

Closed
sjourdan opened this issue Aug 1, 2016 · 7 comments · Fixed by #8173
Closed

digitalocean_ssh_key keeps being forced as a new resource #7889

sjourdan opened this issue Aug 1, 2016 · 7 comments · Fixed by #8173
Labels
bug provider/digitalocean

Comments

@sjourdan
Copy link

sjourdan commented Aug 1, 2016
edited
Loading

⚠️ This bug is in an unreleased RC release
(Update: still on 0.7.0 final)

Terraform Version

Terraform v0.7.0-rc4 (abfd2c1daf914867b8737ac9419f3bd2ecc7a822)

Terraform v0.7.0

Affected Resource(s)

  • digitalocean_ssh_key

Terraform Configuration Files

The simplest main.tf:

# Vars
variable "do_token" {}
variable "ssh_key_file" {}

# Provider
provider "digitalocean" {
  token = "${var.do_token}"
}

# Create a new SSH key
resource "digitalocean_ssh_key" "default" {
  name       = "Digital Ocean SSH Key (bug)"
  public_key = "${file("${var.ssh_key_file}.pub")}"
}

A simple terraform.tfvars:

do_token = "now_redacted_token"
ssh_key_file = "./keys/key"

Debug Output

https://gist.github.com/sjourdan/5117947064fcfdb52560eba6164c594c

Expected Behavior

  • No modification expected, as no change happened

Actual Behavior

  • DO SSH key keeps being recreated

Steps to Reproduce

  1. terraform plan or/and
  2. terraform apply

Important Factoids

This is obviously perfectly working in 0.6.x - we're talking 0.7.0 RC4 (0.7.0 final impacted too.)

References

  • none
@lexsys27
Copy link

lexsys27 commented Aug 4, 2016
edited
Loading

I have experienced the same issue on 0.7.0 release. The cause is change in file() behavior - it adds newline at the end of public key which leads to resource recreation.

public_key:  "ssh-rsa AAAAB3N.." => "ssh-rsa AAAAB3N..\n" (forces new resource)

I haven't found notes on this behavior in changelog. Is it intended change or bug?

As a workaround you can replace call to file() function with contents of the file.

@lucapette
Copy link

I can't confirm the problem is exactly the behaviour of file (my knowledge of terraform internals are still very limited sadly) but I can confirm I'm seeing the very same problem. I'll try to dig into the code base to see if I can help (I'd love to, I love the project). Thank you for your hard work!

@tam7t
Copy link
Contributor

tam7t commented Aug 13, 2016

Can you actually confirm that it was working in 0.6.x? I ask because I noticed this behavior before 0.7.

It seems that the digitalocean API strips the whitespace on the public key, and that the actual file does include the newline. I verified that I could make terraform 0.7.0 work as expected by removing the newline from the public key file with perl -pi -e 'chomp if eof' filename.

My current workaround is to do

public_key = "${trimspace(file(var.ssh_key_path))}"

@lucapette
Copy link

@tam7t It works fine with 0.6.14. I've just tried your workaround with trimspace and it works! Thank you for sharing that!

sjourdan pushed a commit to sjourdan/terraform_digitalocean_issue_7889 that referenced this issue Aug 14, 2016
initial commit for bug 7889
5d75caa 
hashicorp/terraform#7889
@sjourdan
Copy link
Author

@tam7t I confirm it's working with 0.6.15 (don't worry about my container):

(code from below is available at https://github.com/sjourdan/terraform_digitalocean_issue_7889/)

$ docker run -it --rm -v `pwd`:/data sjourdan/terraform:0.6.15 --version
Terraform v0.6.15

$ docker run -it --rm -v `pwd`:/data sjourdan/terraform:0.6.15 apply
digitalocean_ssh_key.default: Creating...
  fingerprint: "" => "<computed>"
  name:        "" => "Digital Ocean SSH Key (bug)"
  public_key:  "" => "ssh-rsa AAAA [...] test@bug\n"
digitalocean_ssh_key.default: Creation complete

Apply complete! Resources: 1 added, 0 changed, 0 destroyed.

Now we can apply again and again:

$ docker run -it --rm -v `pwd`:/data sjourdan/terraform:0.6.15 apply
digitalocean_ssh_key.default: Refreshing state... (ID: 2847649)

The same with 0.7.0 keeps recreating the key:

docker run -it --rm -v `pwd`:/data sjourdan/terraform:0.7.0 apply
digitalocean_ssh_key.default: Refreshing state... (ID: 2847649)
digitalocean_ssh_key.default: Destroying...
digitalocean_ssh_key.default: Destruction complete
digitalocean_ssh_key.default: Creating...
  fingerprint: "" => "<computed>"
  name:        "" => "Digital Ocean SSH Key (bug)"
  public_key:  "" => "ssh-rsa AAAA [...] test@bug\n"
digitalocean_ssh_key.default: Creation complete

Apply complete! Resources: 1 added, 0 changed, 1 destroyed.

@tam7t tam7t mentioned this issue Aug 14, 2016
Merged
@tam7t
Copy link
Contributor

tam7t commented Aug 14, 2016

Yup, tried again with 0.6.14 and confirmed that it doesn't attempt to destroy/create the SSH key due to the whitespace. Tracked it down to #7345 and submitted a fix #8173

@ghost
Copy link

ghost commented Apr 23, 2020

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@ghost ghost locked and limited conversation to collaborators Apr 23, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug provider/digitalocean
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

provider/digitalocean: trim whitespace from ssh key tam7t/terraform
5 participants
@lucapette @stack72 @sjourdan @tam7t @lexsys27