Include simple interpolations in getValueText

When calculating `StringlikeLiteral.getValueText`, include results from
interpolations where we can determine their string value. For example:

    b = "b" # local variable
    D = "d" # constant

    "a#{b}c"     # getValueText() = "abc"
    "a#{b}c{D}"  # getValueText() = "abcd"
    /#a#{b}c{D}/ # getValueText() = "abcd"

Author: hmac

ruby/ql/lib/codeql/ruby/ast/Literal.qll

@@ -3,6 +3,7 @@ private import codeql.ruby.security.performance.RegExpTreeView as RETV
 private import internal.AST
 private import internal.Scope
 private import internal.TreeSitter
+private import codeql.ruby.controlflow.CfgNodes
 
 /**
  * A literal.
@@ -411,14 +412,14 @@ class StringlikeLiteral extends Literal, TStringlikeLiteral {
   }
 
   override string getValueText() {
-    // 0 components should result in the empty string
-    // if there are any interpolations, there should be no result
-    // otherwise, concatenate all the components
     forall(StringComponent c | c = this.getComponent(_) |
       not c instanceof StringInterpolationComponent
     ) and
     result =
       concat(StringComponent c, int i | c = this.getComponent(i) | c.getValueText() order by i)
+    or
+    exists(this.getComponent(_)) and
+    result = this.getAControlFlowNode().(ExprNodes::StringlikeLiteralCfgNode).getValueText()
   }
 
   override string toString() {

ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll

@@ -128,6 +128,8 @@ class ReturningCfgNode extends AstCfgNode {
 /** A control-flow node that wraps a `StringComponent` AST expression. */
 class StringComponentCfgNode extends AstCfgNode {
   StringComponentCfgNode() { this.getNode() instanceof StringComponent }
+
+  string getValueText() { result = this.getNode().(StringComponent).getValueText() }
 }
 
 private Expr desugar(Expr n) {
@@ -463,8 +465,13 @@ module ExprNodes {
   }
 
   /** A control-flow node that wraps a `StringInterpolationComponent` AST expression. */
-  class StringInterpolationComponentCfgNode extends StmtSequenceCfgNode {
+  class StringInterpolationComponentCfgNode extends StringComponentCfgNode, StmtSequenceCfgNode {
     StringInterpolationComponentCfgNode() { this.getNode() instanceof StringInterpolationComponent }
+
+    // If last statement in the interpolation is a constant or local variable read,
+    // we attempt to look up its string value.
+    // If there's a result, we return that as the string value of the interpolation.
+    final override string getValueText() { result = this.getLastStmt().getValueText() }
   }
 
   private class StringlikeLiteralChildMapping extends ExprChildMapping, StringlikeLiteral {
@@ -477,8 +484,36 @@ module ExprNodes {
 
     final override StringlikeLiteral getExpr() { result = super.getExpr() }
 
+    /** Gets the `n`th component of this `StringlikeLiteral` */
+    StringComponentCfgNode getComponent(int n) { result.getNode() = e.getComponent(n) }
+
     /** Gets a component of this `StringlikeLiteral` */
-    StringComponentCfgNode getAComponent() { e.hasCfgChild(e.getComponent(_), this, result) }
+    StringComponentCfgNode getAComponent() { result = this.getComponent(_) }
+
+    // 0 components results in the empty string
+    // if all interpolations have a known string value, we will get a result
+    language[monotonicAggregates]
+    override string getValueText() {
+      result = e.getValueText()
+      or
+      result =
+        concat(StringComponent c, int i |
+          c = e.getComponent(i)
+        |
+          getComponentValueText(c) order by i
+        )
+    }
+
+    /**
+     * Get the `ValueText()` of a `StringComponent`.
+     * If the component has a CFG node, defer to that (in order to resolve variables in interpolations).
+     * Otherwise, defer to the AST node.
+     */
+    private string getComponentValueText(StringComponent c) {
+      exists(StringComponentCfgNode n | n.getNode() = c | result = n.getValueText())
+      or
+      not exists(StringComponentCfgNode n | n.getNode() = c) and result = c.getValueText()
+    }
   }
 
   /** A control-flow node that wraps a `StringLiteral` AST expression. */

ruby/ql/test/library-tests/ast/Ast.expected

@@ -1515,6 +1515,22 @@ literals/literals.rb:
 #   66|       getStmt: [AddExpr] ... + ...
 #   66|         getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #   66|         getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 9
+#   67|   getStmt: [AssignExpr] ... = ...
+#   67|     getAnOperand/getLeftOperand: [LocalVariableAccess] bar
+#   67|     getAnOperand/getRightOperand: [StringLiteral] "bar"
+#   67|       getComponent: [StringTextComponent] bar
+#   68|   getStmt: [AssignExpr] ... = ...
+#   68|     getAnOperand/getLeftOperand: [ConstantAssignment] BAR
+#   68|     getAnOperand/getRightOperand: [StringLiteral] "bar"
+#   68|       getComponent: [StringTextComponent] bar
+#   69|   getStmt: [StringLiteral] "foo #{...}"
+#   69|     getComponent: [StringTextComponent] foo 
+#   69|     getComponent: [StringInterpolationComponent] #{...}
+#   69|       getStmt: [LocalVariableAccess] bar
+#   70|   getStmt: [StringLiteral] "foo #{...}"
+#   70|     getComponent: [StringTextComponent] foo 
+#   70|     getComponent: [StringInterpolationComponent] #{...}
+#   70|       getStmt: [ConstantReadAccess] BAR
 #   73|   getStmt: [CharacterLiteral] ?x
 #   74|   getStmt: [CharacterLiteral] ?\n
 #   75|   getStmt: [CharacterLiteral] ?\s
@@ -1539,14 +1555,20 @@ literals/literals.rb:
 #   89|     getComponent: [StringTextComponent] wibble
 #   90|   getStmt: [SymbolLiteral] :"wibble wobble"
 #   90|     getComponent: [StringTextComponent] wibble wobble
-#   91|   getStmt: [SymbolLiteral] :"foo_#{...}"
+#   91|   getStmt: [SymbolLiteral] :"foo_#{...}_#{...}_#{...}"
 #   91|     getComponent: [StringTextComponent] foo_
 #   91|     getComponent: [StringInterpolationComponent] #{...}
 #   91|       getStmt: [AddExpr] ... + ...
 #   91|         getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 2
 #   91|         getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 2
-#   92|   getStmt: [SymbolLiteral] :"foo_#{ 1 + 1 }"
-#   92|     getComponent: [StringTextComponent] foo_#{ 1 + 1 }
+#   91|     getComponent: [StringTextComponent] _
+#   91|     getComponent: [StringInterpolationComponent] #{...}
+#   91|       getStmt: [LocalVariableAccess] bar
+#   91|     getComponent: [StringTextComponent] _
+#   91|     getComponent: [StringInterpolationComponent] #{...}
+#   91|       getStmt: [ConstantReadAccess] BAR
+#   92|   getStmt: [SymbolLiteral] :"foo_#{ 2 + 2}_#{bar}_#{BAR}"
+#   92|     getComponent: [StringTextComponent] foo_#{ 2 + 2}_#{bar}_#{BAR}
 #   93|   getStmt: [SymbolLiteral] :"foo_#{ 3 - 2 }"
 #   93|     getComponent: [StringTextComponent] foo_#{ 3 - 2 }
 #   96|   getStmt: [ArrayLiteral] [...]
@@ -1589,13 +1611,23 @@ literals/literals.rb:
 #  105|         getStmt: [AddExpr] ... + ...
 #  105|           getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #  105|           getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 1
+#  105|     getElement: [StringLiteral] "#{...}"
+#  105|       getComponent: [StringInterpolationComponent] #{...}
+#  105|         getStmt: [LocalVariableAccess] bar
+#  105|     getElement: [StringLiteral] "#{...}"
+#  105|       getComponent: [StringInterpolationComponent] #{...}
+#  105|         getStmt: [ConstantReadAccess] BAR
 #  105|     getElement: [StringLiteral] "baz"
 #  105|       getComponent: [StringTextComponent] baz
 #  106|   getStmt: [ArrayLiteral] %w(...)
 #  106|     getElement: [StringLiteral] "foo"
 #  106|       getComponent: [StringTextComponent] foo
 #  106|     getElement: [StringLiteral] "bar#{1+1}"
 #  106|       getComponent: [StringTextComponent] bar#{1+1}
+#  106|     getElement: [StringLiteral] "#{bar}"
+#  106|       getComponent: [StringTextComponent] #{bar}
+#  106|     getElement: [StringLiteral] "#{BAR}"
+#  106|       getComponent: [StringTextComponent] #{BAR}
 #  106|     getElement: [StringLiteral] "baz"
 #  106|       getComponent: [StringTextComponent] baz
 #  109|   getStmt: [ArrayLiteral] %i(...)
@@ -1622,6 +1654,12 @@ literals/literals.rb:
 #  112|         getStmt: [AddExpr] ... + ...
 #  112|           getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 2
 #  112|           getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 4
+#  112|     getElement: [SymbolLiteral] :"#{...}"
+#  112|       getComponent: [StringInterpolationComponent] #{...}
+#  112|         getStmt: [LocalVariableAccess] bar
+#  112|     getElement: [SymbolLiteral] :"#{...}"
+#  112|       getComponent: [StringInterpolationComponent] #{...}
+#  112|         getStmt: [ConstantReadAccess] BAR
 #  112|     getElement: [SymbolLiteral] :"baz"
 #  112|       getComponent: [StringTextComponent] baz
 #  113|   getStmt: [ArrayLiteral] %i(...)
@@ -1637,6 +1675,10 @@ literals/literals.rb:
 #  113|       getComponent: [StringTextComponent] 4
 #  113|     getElement: [SymbolLiteral] :"}"
 #  113|       getComponent: [StringTextComponent] }
+#  113|     getElement: [SymbolLiteral] :"#{bar}"
+#  113|       getComponent: [StringTextComponent] #{bar}
+#  113|     getElement: [SymbolLiteral] :"#{BAR}"
+#  113|       getComponent: [StringTextComponent] #{BAR}
 #  113|     getElement: [SymbolLiteral] :"baz"
 #  113|       getComponent: [StringTextComponent] baz
 #  116|   getStmt: [HashLiteral] {...}
@@ -1656,7 +1698,7 @@ literals/literals.rb:
 #  118|       getKey: [SymbolLiteral] :foo
 #  118|       getValue: [IntegerLiteral] 7
 #  118|     getElement: [HashSplatExpr] ** ...
-#  118|       getAnOperand/getOperand/getReceiver: [MethodCall] call to bar
+#  118|       getAnOperand/getOperand/getReceiver: [MethodCall] call to baz
 #  118|         getReceiver: [Self, SelfVariableAccess] self
 #  121|   getStmt: [ParenthesizedExpr] ( ... )
 #  121|     getStmt: [RangeLiteral] _ .. _
@@ -1692,12 +1734,18 @@ literals/literals.rb:
 #  130|     getComponent: [StringTextComponent] ls -l
 #  131|   getStmt: [SubshellLiteral] `ls -l`
 #  131|     getComponent: [StringTextComponent] ls -l
-#  132|   getStmt: [SubshellLiteral] `du -d #{...}`
+#  132|   getStmt: [SubshellLiteral] `du -d #{...} #{...} #{...}`
 #  132|     getComponent: [StringTextComponent] du -d 
 #  132|     getComponent: [StringInterpolationComponent] #{...}
 #  132|       getStmt: [AddExpr] ... + ...
 #  132|         getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #  132|         getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 1
+#  132|     getComponent: [StringTextComponent]  
+#  132|     getComponent: [StringInterpolationComponent] #{...}
+#  132|       getStmt: [LocalVariableAccess] bar
+#  132|     getComponent: [StringTextComponent]  
+#  132|     getComponent: [StringInterpolationComponent] #{...}
+#  132|       getStmt: [ConstantReadAccess] BAR
 #  133|   getStmt: [SubshellLiteral] `du -d #{...}`
 #  133|     getComponent: [StringTextComponent] du -d 
 #  133|     getComponent: [StringInterpolationComponent] #{...}
@@ -1732,13 +1780,31 @@ literals/literals.rb:
 #  139|     getComponent: [StringEscapeSequenceComponent] \s
 #  139|     getComponent: [StringTextComponent] bar
 #  139|     getComponent: [StringEscapeSequenceComponent] \S
-#  140|   getStmt: [RegExpLiteral] /foo#{...}bar/
+#  140|   getStmt: [RegExpLiteral] /foo#{...}bar#{...}#{...}/
+#  140|     getParsed: [RegExpSequence] foo2barbarbar
+#  140|       0: [RegExpConstant, RegExpNormalChar] f
+#  140|       1: [RegExpConstant, RegExpNormalChar] o
+#  140|       2: [RegExpConstant, RegExpNormalChar] o
+#  140|       3: [RegExpConstant, RegExpNormalChar] 2
+#  140|       4: [RegExpConstant, RegExpNormalChar] b
+#  140|       5: [RegExpConstant, RegExpNormalChar] a
+#  140|       6: [RegExpConstant, RegExpNormalChar] r
+#  140|       7: [RegExpConstant, RegExpNormalChar] b
+#  140|       8: [RegExpConstant, RegExpNormalChar] a
+#  140|       9: [RegExpConstant, RegExpNormalChar] r
+#  140|       10: [RegExpConstant, RegExpNormalChar] b
+#  140|       11: [RegExpConstant, RegExpNormalChar] a
+#  140|       12: [RegExpConstant, RegExpNormalChar] r
 #  140|     getComponent: [StringTextComponent] foo
 #  140|     getComponent: [StringInterpolationComponent] #{...}
 #  140|       getStmt: [AddExpr] ... + ...
 #  140|         getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #  140|         getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 1
 #  140|     getComponent: [StringTextComponent] bar
+#  140|     getComponent: [StringInterpolationComponent] #{...}
+#  140|       getStmt: [LocalVariableAccess] bar
+#  140|     getComponent: [StringInterpolationComponent] #{...}
+#  140|       getStmt: [ConstantReadAccess] BAR
 #  141|   getStmt: [RegExpLiteral] /foo/
 #  141|     getParsed: [RegExpSequence] foo
 #  141|       0: [RegExpConstant, RegExpNormalChar] f
@@ -1773,13 +1839,31 @@ literals/literals.rb:
 #  145|     getComponent: [StringEscapeSequenceComponent] \s
 #  145|     getComponent: [StringTextComponent] bar
 #  145|     getComponent: [StringEscapeSequenceComponent] \S
-#  146|   getStmt: [RegExpLiteral] /foo#{...}bar/
+#  146|   getStmt: [RegExpLiteral] /foo#{...}bar#{...}#{...}/
+#  146|     getParsed: [RegExpSequence] foo2barbarbar
+#  146|       0: [RegExpConstant, RegExpNormalChar] f
+#  146|       1: [RegExpConstant, RegExpNormalChar] o
+#  146|       2: [RegExpConstant, RegExpNormalChar] o
+#  146|       3: [RegExpConstant, RegExpNormalChar] 2
+#  146|       4: [RegExpConstant, RegExpNormalChar] b
+#  146|       5: [RegExpConstant, RegExpNormalChar] a
+#  146|       6: [RegExpConstant, RegExpNormalChar] r
+#  146|       7: [RegExpConstant, RegExpNormalChar] b
+#  146|       8: [RegExpConstant, RegExpNormalChar] a
+#  146|       9: [RegExpConstant, RegExpNormalChar] r
+#  146|       10: [RegExpConstant, RegExpNormalChar] b
+#  146|       11: [RegExpConstant, RegExpNormalChar] a
+#  146|       12: [RegExpConstant, RegExpNormalChar] r
 #  146|     getComponent: [StringTextComponent] foo
 #  146|     getComponent: [StringInterpolationComponent] #{...}
 #  146|       getStmt: [AddExpr] ... + ...
 #  146|         getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #  146|         getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 1
 #  146|     getComponent: [StringTextComponent] bar
+#  146|     getComponent: [StringInterpolationComponent] #{...}
+#  146|       getStmt: [LocalVariableAccess] bar
+#  146|     getComponent: [StringInterpolationComponent] #{...}
+#  146|       getStmt: [ConstantReadAccess] BAR
 #  147|   getStmt: [RegExpLiteral] /foo/
 #  147|     getParsed: [RegExpSequence] foo
 #  147|       0: [RegExpConstant, RegExpNormalChar] f

ruby/ql/test/library-tests/ast/AstDesugar.expected

@@ -350,6 +350,12 @@ literals/literals.rb:
 #  105|         getStmt: [AddExpr] ... + ...
 #  105|           getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 1
 #  105|           getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 1
+#  105|     getArgument: [StringLiteral] "#{...}"
+#  105|       getComponent: [StringInterpolationComponent] #{...}
+#  105|         getStmt: [LocalVariableAccess] bar
+#  105|     getArgument: [StringLiteral] "#{...}"
+#  105|       getComponent: [StringInterpolationComponent] #{...}
+#  105|         getStmt: [ConstantReadAccess] BAR
 #  105|     getArgument: [StringLiteral] "baz"
 #  105|       getComponent: [StringTextComponent] baz
 #  106| [ArrayLiteral] %w(...)
@@ -359,6 +365,10 @@ literals/literals.rb:
 #  106|       getComponent: [StringTextComponent] foo
 #  106|     getArgument: [StringLiteral] "bar#{1+1}"
 #  106|       getComponent: [StringTextComponent] bar#{1+1}
+#  106|     getArgument: [StringLiteral] "#{bar}"
+#  106|       getComponent: [StringTextComponent] #{bar}
+#  106|     getArgument: [StringLiteral] "#{BAR}"
+#  106|       getComponent: [StringTextComponent] #{BAR}
 #  106|     getArgument: [StringLiteral] "baz"
 #  106|       getComponent: [StringTextComponent] baz
 #  109| [ArrayLiteral] %i(...)
@@ -393,6 +403,12 @@ literals/literals.rb:
 #  112|         getStmt: [AddExpr] ... + ...
 #  112|           getAnOperand/getLeftOperand/getReceiver: [IntegerLiteral] 2
 #  112|           getAnOperand/getArgument/getRightOperand: [IntegerLiteral] 4
+#  112|     getArgument: [SymbolLiteral] :"#{...}"
+#  112|       getComponent: [StringInterpolationComponent] #{...}
+#  112|         getStmt: [LocalVariableAccess] bar
+#  112|     getArgument: [SymbolLiteral] :"#{...}"
+#  112|       getComponent: [StringInterpolationComponent] #{...}
+#  112|         getStmt: [ConstantReadAccess] BAR
 #  112|     getArgument: [SymbolLiteral] :"baz"
 #  112|       getComponent: [StringTextComponent] baz
 #  113| [ArrayLiteral] %i(...)
@@ -410,6 +426,10 @@ literals/literals.rb:
 #  113|       getComponent: [StringTextComponent] 4
 #  113|     getArgument: [SymbolLiteral] :"}"
 #  113|       getComponent: [StringTextComponent] }
+#  113|     getArgument: [SymbolLiteral] :"#{bar}"
+#  113|       getComponent: [StringTextComponent] #{bar}
+#  113|     getArgument: [SymbolLiteral] :"#{BAR}"
+#  113|       getComponent: [StringTextComponent] #{BAR}
 #  113|     getArgument: [SymbolLiteral] :"baz"
 #  113|       getComponent: [StringTextComponent] baz
 control/loops.rb: