Unable to create manifests for kubernetes_manifest ENIconfig

[darrenwhighamfd]

Terraform Version, Provider Version and Kubernetes Version

Terraform version: 1.1
Kubernetes provider version: 2.13.1
Kubernetes version: 1.22

Affected Resource(s)

• kubernetes_manifest

Terraform Configuration Files

resource "kubernetes_manifest" "ENIconfig_a" {
  manifest = {
    "apiVersion" = "crd.k8s.amazonaws.com/v1alpha1"
    "kind" = "ENIConfig"
    "metadata" = {
      "name" = "${var.region}a"
    }
    "spec" = {
      "securityGroups" = [
        "${aws_security_group.permissive_pod_sg.id}"
      ]
      "subnet" = "${aws_subnet.extra_az_1a.id}"
    }        
  }
  depends_on = [
    aws_subnet.extra_az_1a, module.eks, aws_security_group.permissive_pod_sg
  ]
}
## B ##
resource "kubernetes_manifest" "ENIconfig_b" {
  manifest = {
    "apiVersion" = "crd.k8s.amazonaws.com/v1alpha1"
    "kind" = "ENIConfig"
    "metadata" = {
      "name" = "${var.region}b"
    }
    "spec" = {
      "securityGroups" = [
        "${aws_security_group.permissive_pod_sg.id}"
      ]
      "subnet" = "${aws_subnet.extra_az_1b.id}"
    }        
  }
  depends_on = [
    aws_subnet.extra_az_1b, module.eks, aws_security_group.permissive_pod_sg
  ]
}

## C ##
resource "kubernetes_manifest" "ENIconfig_c" {
  manifest = {
    "apiVersion" = "crd.k8s.amazonaws.com/v1alpha1"
    "kind" = "ENIConfig"
    "metadata" = {
      "name" = "${var.region}c"
    }
    "spec" = {
      "securityGroups" = [
        "${aws_security_group.permissive_pod_sg.id}"
      ]
      "subnet" = "${aws_subnet.extra_az_1c.id}"
    }        
  }
  depends_on = [
    aws_subnet.extra_az_1c, module.eks, aws_security_group.permissive_pod_sg
  ]
}

Debug Output

1:57:08.781: Error: Command failed
--
  | 11:57:08.781: ╷
  | 11:57:08.781: │ Error: Provider produced invalid plan
  | 11:57:08.781: │
  | 11:57:08.781: │ Provider "registry.terraform.io/hashicorp/kubernetes" planned an invalid
  | 11:57:08.781: │ value for kubernetes_manifest.ENIconfig_b.manifest: planned value
  | 11:57:08.781: │ cty.ObjectVal(map[string]cty.Value{"apiVersion":cty.StringVal("crd.k8s.amazonaws.com/v1alpha1"),
  | 11:57:08.781: │ "kind":cty.StringVal("ENIConfig"),
  | 11:57:08.781: │ "metadata":cty.ObjectVal(map[string]cty.Value{"name":cty.StringVal("us-east-1b")}),
  | 11:57:08.781: │ "spec":cty.ObjectVal(map[string]cty.Value{"securityGroups":cty.TupleVal([]cty.Value{cty.NullVal(cty.String)}),
  | 11:57:08.781: │ "subnet":cty.NullVal(cty.String)})}) does not match config value
  | 11:57:08.781: │ cty.ObjectVal(map[string]cty.Value{"apiVersion":cty.StringVal("crd.k8s.amazonaws.com/v1alpha1"),
  | 11:57:08.781: │ "kind":cty.StringVal("ENIConfig"),
  | 11:57:08.781: │ "metadata":cty.ObjectVal(map[string]cty.Value{"name":cty.StringVal("us-east-1b")}),
  | 11:57:08.781: │ "spec":cty.ObjectVal(map[string]cty.Value{"securityGroups":cty.TupleVal([]cty.Value{cty.UnknownVal(cty.String)}),
  | 11:57:08.781: │ "subnet":cty.UnknownVal(cty.String)})}).
  | 11:57:08.781: │
  | 11:57:08.781: │ This is a bug in the provider, which should be reported in the provider's
  | 11:57:08.781: │ own issue tracker.

Steps to Reproduce

1. terraform plan