Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: always install leaves using npm --global-style #775

Merged
merged 1 commit into from
Apr 22, 2017

Conversation

ricky
Copy link
Contributor

@ricky ricky commented Apr 21, 2017

Description

Use npm install --global-style under lerna bootstrap --hoist for packages which cannot be hoisted. This results in more consistently correct behavior at the cost of increased duplication of some packages.

Motivation and Context

In the event that an explicit dependency (dep1@X) of a package is hoisted but other dependencies with a common sub-dependency on a different version of dep1@Y cannot be hoisted, npm will attempt to share that package by installing dep1@Y in the root of the package's node_modules directory. As a result, the incorrect version of dep1 will be available to the package rather than the hoisted dependency it requires.

Scenario

  1. A package has three explicit dependencies: dep1@2.x, dep2, and dep3.
  2. dep2 & dep3 have a transitive dependency on a different version of dep1 (dep1@1.x)
  3. dep1@2.x can be hoisted, but dep2 & dep3 cannot (either due to version mismatches or explict --nohoist directives).

Current Result

├── node_modules
│   └── dep1@2.x
└── my-package
    └── node-modules
        ├── dep1@1.x
        ├── dep2
        └── dep3

Desired result

├── node_modules
│   └── dep1@2.x
└── my-package
    └── node-modules
        ├── dep2
            └── dep1@1.x
        └── dep3
            └── dep1@1.x

Result without hoisting

├── my-package
    └── node-modules
        ├── dep1@2.x
        ├── dep2
            └── dep1@1.x
        └── dep3
            └── dep1@1.x

See: #677

How Has This Been Tested?

Basic test project and manual validation steps outlined here:
https://gist.github.com/ricky/ff42dd94d52f2c3e25218d6dcb0a5372

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to change)

From the perspective of npm users, this probably qualifies as a non-breaking change. For yarn users, the client override would constitute a change in functionality.

Checklist:

  • My code follows the code style of this project. (AFAICT)
  • My change requires a change to the documentation.
  • I have updated the documentation accordingly.
  • I have read the CONTRIBUTING document.
  • I have added tests to cover my changes.
  • All new and existing tests passed.

I had some difficulty crafting a unit test to cover this case. With the way the mocks & fixtures are set up, it's not immediately clear how to represent the transitive dependency of an external dependency.

In the event that an explicit dependency (`dep1@X`) of a package is
hoisted but other dependencies with a common sub-dependency on a
different version of `dep1@Y` cannot be hoisted, npm will attempt to
share that package by installing `dep1@Y` in the root of the
package's `node_modules` directory. As a result, the incorrect
version of dep1 will be available to the package rather than the
hoisted dependency it requires.

To avoid this, always use `npm install --global-style` for "leaves"
in a hoisted context. This results in more consistently correct
behavior at the cost of increased duplication of some packages.

See: lerna#677
Copy link
Member

@evocateur evocateur left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@ricky This looks great so far, thanks! A couple more simple tests and we're good to go.


if (npmGlobalStyle) {
cmd = "npm";
args.push("--global-style");
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

An NpmUtilities.installInDir() test case with an assertion similar to this one would help keep our coverage up.

const config = { npmClient: "yarn" };
const npmGlobalStyle = true;

NpmUtilities.installInDir(directory, dependencies, config, npmGlobalStyle, (err) => {
  // ...
  expect(ChildProcessUtilities.exec).lastCalledWith("npm", ["install", "--global-style"], {
    // ...

@@ -439,6 +441,7 @@ export default class BootstrapCommand extends Command {
pkg.location,
deps.map(({ dependency }) => dependency),
this.npmConfig,
npmGlobalStyle,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

An assertion in this test would be helpful:

expect(NpmUtilities.installInDir).toBeCalledWith(
  expect.stringContaining("package-dirname"),
  expect.arrayContaining(["non-hoisted-dependency-name"]),
  expect.any(Object),
  true, // npmGlobalStyle
  expect.any(Function)
);

Of course, this means our BootstrapCommand/basic fixture (or a new, hoist-focused variant) needs a non-hoistable external dependency in one of its packages.

@evocateur evocateur added this to the v2.0.0 milestone Apr 22, 2017
@evocateur
Copy link
Member

We can backfill the tests later, the gist you made clearly shows that this works as intended.

@evocateur evocateur merged commit c590d57 into lerna:master Apr 22, 2017
@ricky
Copy link
Contributor Author

ricky commented Apr 22, 2017

Thanks. I'll get those test put together by Monday.

@ricky ricky deleted the 677-global-style-leaves branch April 22, 2017 16:17
@evocateur
Copy link
Member

@ricky Awesome!

@ricky ricky mentioned this pull request Apr 24, 2017
9 tasks
@jppurcell9
Copy link

Nice work @ricky, thanks for the fix!

evocateur pushed a commit that referenced this pull request Apr 24, 2017
@lock
Copy link

lock bot commented Dec 27, 2018

This thread has been automatically locked because there has not been any recent activity after it was closed. Please open a new issue for related bugs.

@lock lock bot locked as resolved and limited conversation to collaborators Dec 27, 2018
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants