terraform: upgrade hashicorp/google to 6.7.0

[burgerdev]

Context

CI jobs have been running into GCP IAM inconsistencies, which are caused by a bad waiting condition in the Google Terraform provider. The issue has been fixed, but not backported to 5.x.

Proposed change(s)

• Upgrade major version of Terraform provider

Related issue

• Fixes https://github.com/edgelesssys/issues/issues/635

Additional info

• AB#4686

Checklist

• Run the E2E tests that are relevant to this PR's changes
  • Install
  • Upgrade
  • Terraform
• Add labels (e.g., for changelog category)
• Is PR title adequate for changelog?
• Link to Milestone

[netlify]

✅ Deploy Preview for constellation-docs canceled.

Name	Link
🔨 Latest commit	d1ca6c7
🔍 Latest deploy log	https://app.netlify.com/sites/constellation-docs/deploys/671231f67e7d840009df5482

[burgerdev]

All tests passed!

[3u13r]

This looks like not all hashes for all platform were generated. When a Terraform provider is upgraded by renovate we have one of the ci jobs fixing the hashes I think. Let me see if I can find an example PR.

[burgerdev]

I believe //:generate should complain in that case, no?

[burgerdev]

Actually, I think all is fine: we're explicitly locking 5 platforms, which should explain the h1 hashes, and the zh hashes are for all assets in the release.

[3u13r]

Ah I guess we loose 5 because we are not using google-beta anymore. That leaves me with 1 unaccounted hash but generally looks good.

[burgerdev]

Which hash would that be?

[3u13r]

No idea how they map to the provider binaries, but I count 11 h1 hashes on the left side and 5 on the right.

[burgerdev]

Interestingly, we only had 11 h1 hashes for a few months, and even without google-beta: bdfb74f#diff-0c5774419575b03d643fef6eb386884b3871958bacb6950c1ea473bdfaaf054c.

I don't intend to pursue this any further, as mentioned above I think 5 h1 hashes is all we need.

[3u13r]

LGTM

[burgerdev]

Let's hold this back until after the v2.19.0 release.