Fix: 'yarn --flat' unbound transitive deps shouldn't conflict with top level deps

[mxmul]

Summary

Fixes #3780, and makes the failing test from #3779 passing.

As a final step of package resolution, for each dependency we check whether any version satisfies all resolved version ranges.

Test plan

Fixes an existing (failing) test: "unbound transitive dependencies should not conflict with top level dependency"

[BYK]

Looks good but I have some suggestions.

Also, I'm wondering if we can put this logic into .find() itself, potentially avoiding some more network requests and the extra loop over dependencies at the end.

[BYK]

Why not exclude only the locked ones and still optimize the rest?

[mxmul]

So I've made this change, but it causes some workspace related tests to fail ("install should link workspaces that refer each other", "install should not link workspaces that refer not compatible version of another workspace"). I don't quite understand why these are failing, but I've just disabled the optimization wherever remote.type === "workspace". Open to other suggestions.

[BYK]

Looks like you just need this.getAllInfoForPackageName(name) above instead.

[BYK]

Why not Array.from(manifestByVersion.keys()). That said spread looks is faster in latest V8 versions so NVM: https://jsperf.com/set-iterator-vs-foreach/4

[BYK]

I think you can leverage some semver secrets as follows:

const fullRange = patterns.map(pattern => normalizePattern(p).range).join(' ');
const oneRingToRuleThemAll = semver.maxSatisfying([...manifestByVersion.keys()], fullRange);
if (oneRingToRuleThemAll) {
    this.collapseAllVersionsOfPackage(name, oneRingToRuleThemAll);
}

This should be more efficient than what the code below does. Also, the code below continuously resolves to new versions as it goes on since return in a forEach loop doesn't terminate the loop at all.

[mxmul]

Yep, that's a nice optimization.

[buildsize]

This change will decrease the build size from 9.7 MB to 9.7 MB, a decrease of 1.79 KB (0%)

File name	Previous Size	New Size	Change
yarn-[version].noarch.rpm	835.38 KB	834.94 KB	-445 bytes (0%)
yarn-[version].js	3.7 MB	3.7 MB	-137 bytes (0%)
yarn-legacy-[version].js	3.75 MB	3.74 MB	-551 bytes (0%)
yarn-v[version].tar.gz	839.47 KB	839.06 KB	-423 bytes (0%)
yarn_[version]all.deb	635.3 KB	635.03 KB	-272 bytes (0%)

[buildsize]

This change will increase the build size from 9.69 MB to 9.7 MB, an increase of 870 bytes (0%)

File name	Previous Size	New Size	Change
yarn-[version].noarch.rpm	835.17 KB	835 KB	-179 bytes (0%)
yarn-[version].js	3.69 MB	3.7 MB	693 bytes (0%)
yarn-legacy-[version].js	3.74 MB	3.75 MB	554 bytes (0%)
yarn-v[version].tar.gz	839.21 KB	839.11 KB	-102 bytes (0%)
yarn_[version]all.deb	635.2 KB	635.1 KB	-96 bytes (0%)

[BYK]

I'm a bit worried about impacting performance with this but overall looks good.

Would love to get @arcanis or @kaylieEB's feedback before approving though.

[BYK]

Actually, maybe this should be < 2 since if you have only one pattern, you still don't need to collapse it, right?

[BYK]

For loops are more efficient so I strongly recommend writing this as a for loop. .forEach becomes as fast only after Node 8.5.

Waiting other's input. The final version LGTM.

[arcanis]

Makes sense to me. I think the ideal fix would rather be in the hoister (we broke part of it somewhere in 0.26, which is why we noticed some packages stopped being merged together since this release), but it seems like a valid iteration for the time being.