github
diff --git a/‎CODEOWNERS‎
Lines changed: 1 addition & 0 deletions b/‎CODEOWNERS‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎cpp/ql/lib/experimental/quantum/OpenSSL/AlgorithmValueConsumers/HashAlgorithmValueConsumer.qll‎
Lines changed: 3 additions & 8 deletions b/‎cpp/ql/lib/experimental/quantum/OpenSSL/AlgorithmValueConsumers/HashAlgorithmValueConsumer.qll‎
Lines changed: 3 additions & 8 deletions
diff --git a/‎cpp/ql/test/experimental/library-tests/quantum/openssl/options‎
Lines changed: 1 addition & 1 deletion b/‎cpp/ql/test/experimental/library-tests/quantum/openssl/options‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cpp/ql/test/stubs/openssl/alg_macro_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/alg_macro_stubs.h‎ b/‎cpp/ql/test/stubs/openssl/alg_macro_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/alg_macro_stubs.h‎
diff --git a/‎cpp/ql/test/stubs/openssl/evp_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/evp_stubs.h‎ b/‎cpp/ql/test/stubs/openssl/evp_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/evp_stubs.h‎
diff --git a/‎cpp/ql/test/stubs/openssl/license.txt‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/license.txt‎ b/‎cpp/ql/test/stubs/openssl/license.txt‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/license.txt‎
diff --git a/‎cpp/ql/test/stubs/openssl/rand_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/rand_stubs.h‎ b/‎cpp/ql/test/stubs/openssl/rand_stubs.h‎ renamed to ‎cpp/ql/test/stubs/crypto/openssl/rand_stubs.h‎
@@ -18,6 +18,7 @@
 # Experimental CodeQL cryptography
 **/experimental/**/quantum/ @github/ps-codeql
 /shared/quantum/ @github/ps-codeql
+**/test/stubs/crypto/ @github/ps-codeql
 
 # CodeQL tools and associated docs
 /docs/codeql/codeql-cli/ @github/codeql-cli-reviewers
 
@@ -3,18 +3,14 @@ private import experimental.quantum.Language
 private import semmle.code.cpp.dataflow.new.DataFlow
 private import experimental.quantum.OpenSSL.AlgorithmValueConsumers.OpenSSLAlgorithmValueConsumerBase
 private import experimental.quantum.OpenSSL.AlgorithmInstances.OpenSSLAlgorithmInstances
-private import experimental.quantum.OpenSSL.LibraryDetector
 
 abstract class HashAlgorithmValueConsumer extends OpenSSLAlgorithmValueConsumer { }
 
 /**
  * EVP_Q_Digest directly consumes algorithm constant values
  */
-class EVP_Q_Digest_Algorithm_Consumer extends OpenSSLAlgorithmValueConsumer {
-  EVP_Q_Digest_Algorithm_Consumer() {
-    isPossibleOpenSSLFunction(this.(Call).getTarget()) and
-    this.(Call).getTarget().getName() = "EVP_Q_digest"
-  }
+class EVP_Q_Digest_Algorithm_Consumer extends HashAlgorithmValueConsumer {
+  EVP_Q_Digest_Algorithm_Consumer() { this.(Call).getTarget().getName() = "EVP_Q_digest" }
 
   override Crypto::ConsumerInputDataFlowNode getInputNode() {
     result.asExpr() = this.(Call).getArgument(1)
@@ -35,13 +31,12 @@ class EVP_Q_Digest_Algorithm_Consumer extends OpenSSLAlgorithmValueConsumer {
  * The EVP digest algorithm getters
  * https://docs.openssl.org/3.0/man3/EVP_DigestInit/#synopsis
  */
-class EVPDigestAlgorithmValueConsumer extends OpenSSLAlgorithmValueConsumer {
+class EVPDigestAlgorithmValueConsumer extends HashAlgorithmValueConsumer {
   DataFlow::Node valueArgNode;
   DataFlow::Node resultNode;
 
   EVPDigestAlgorithmValueConsumer() {
     resultNode.asExpr() = this and
-    isPossibleOpenSSLFunction(this.(Call).getTarget()) and
     (
       this.(Call).getTarget().getName() in [
           "EVP_get_digestbyname", "EVP_get_digestbynid", "EVP_get_digestbyobj"
 
@@ -1 +1 @@
-semmle-extractor-options: -I ../../../../stubs
+semmle-extractor-options: -I ../../../../stubs/crypto
Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-semmle-extractor-options: -I ../../../../stubs`
	`1`	`+semmle-extractor-options: -I ../../../../stubs/crypto`