[Bug]: VPC Interface Endpoint private_dns_enabled is set to true automatically during creation

[raghavanrrs]

Terraform Core Version

v1.5.6

AWS Provider Version

v5.52.0

Affected Resource(s)

• aws_vpc_endpoint

Latest AWS TF provider version setting the attribute private_dns_enabled to true during creation and in the next run it accepts whatever the value we given as part of variable

Not able to configure PHZ with private_dns_enabled set to false.

Expected Behavior

should accept values passed inside the variable

Actual Behavior

Error: creating Route53 Hosted Zone (sns.ap-southeast-1.amazonaws.com): operation error Route 53: CreateHostedZone, https response error StatusCode: 400, RequestID: ae88012e-f855-4b54-94a9-62dc08fd8e72, ConflictingDomainExists: The VPC vpc-xxxxxxxxxxxxxxxxx in region ap-southeast-1 has already been associated with the hosted zone Z1234567890 with the same domain name.

Relevant Error/Panic Output Snippet

Error: creating Route53 Hosted Zone (sns.ap-southeast-1.amazonaws.com): operation error Route 53: CreateHostedZone, https response error StatusCode: 400, RequestID: ae88012e-f855-4b54-94a9-62dc08fd8e72, ConflictingDomainExists: The VPC vpc-xxxxxxxxxxxxxxxxx in region ap-southeast-1 has already been associated with the hosted zone Z1234567890 with the same domain name.

Terraform Configuration Files

module.interface_endpoints.aws_vpc_endpoint.interface_services["sqs"] will be created

• resource "aws_vpc_endpoint" "interface_services" {

  • arn = (known after apply)

  • auto_accept = true

  • cidr_blocks = (known after apply)

  • dns_entry = (known after apply)

  • id = (known after apply)

  • ip_address_type = (known after apply)

  • network_interface_ids = (known after apply)

  • owner_id = (known after apply)

  • policy = (known after apply)

  • prefix_list_id = (known after apply)

  • private_dns_enabled = false

  • requester_managed = (known after apply)

  • route_table_ids = (known after apply)

  • security_group_ids = [

    • "sg-1234567890", ]

  • service_name = "com.amazonaws.ap-southeast-1.sqs"

  • state = (known after apply)

  • subnet_ids = [

    • "subnet-1234567890",
    • "subnet-0987654321", ]

  • tags = {

    • "Name" = "network-shared-services-vpc-sqs-interface-endpoint" }

  • tags_all = {

    • "Name" = "network-shared-services-vpc-sqs-interface-endpoint" }

  • vpc_endpoint_type = "Interface"

  • vpc_id = "vpc-1234567890"

  • timeouts {

    • create = "20m"
    • delete = "60m"
    • update = "20m" } }

Steps to Reproduce

terraform apply

Debug Output

No response

Panic Output

No response

Important Factoids

No response

References

No response

Would you like to implement a fix?

None

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.

[theipster]

I've already reported this bug in https://github.com/hashicorp/terraform-provider-aws/issues/37694 (and already submitted a fix in PR https://github.com/hashicorp/terraform-provider-aws/pull/37715). Please feel free to upvote that.

[ewbankkit]

@raghavanrrs Thanks for raising this issue. It has already been noticed in #37694. I'm going to close this one as a duplicate so that we can concentrate discussion in the linked issue. Please add any additional comments there.

[github-actions[bot]]

[!WARNING] This issue has been closed, meaning that any additional comments are hard for our team to see. Please assume that the maintainers will not see them.

Ongoing conversations amongst community members are welcome, however, the issue will be locked after 30 days. Moving conversations to another venue, such as the AWS Provider forum, is recommended. If you have additional concerns, please open a new issue, referencing this one where needed.

[github-actions[bot]]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.