From 7086111ad4dd997e12a3220e1ee60c9b9bcf0bb8 Mon Sep 17 00:00:00 2001
From: Charles <sircharlesaze@gmail.com>
Date: Tue, 7 Jan 2020 13:06:14 +0100
Subject: Added wordpress

---
 .../wp-includes/sodium_compat/src/Compat.php       | 3560 ++++++++++++++++++++
 1 file changed, 3560 insertions(+)
 create mode 100644 srcs/wordpress/wp-includes/sodium_compat/src/Compat.php

(limited to 'srcs/wordpress/wp-includes/sodium_compat/src/Compat.php')

diff --git a/srcs/wordpress/wp-includes/sodium_compat/src/Compat.php b/srcs/wordpress/wp-includes/sodium_compat/src/Compat.php
new file mode 100644
index 0000000..e49133f
--- /dev/null
+++ b/srcs/wordpress/wp-includes/sodium_compat/src/Compat.php
@@ -0,0 +1,3560 @@
+<?php
+
+/**
+ * Libsodium compatibility layer
+ *
+ * This is the only class you should be interfacing with, as a user of
+ * sodium_compat.
+ *
+ * If the PHP extension for libsodium is installed, it will always use that
+ * instead of our implementations. You get better performance and stronger
+ * guarantees against side-channels that way.
+ *
+ * However, if your users don't have the PHP extension installed, we offer a
+ * compatible interface here. It will give you the correct results as if the
+ * PHP extension was installed. It won't be as fast, of course.
+ *
+ * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION *
+ *                                                                               *
+ *     Until audited, this is probably not safe to use! DANGER WILL ROBINSON     *
+ *                                                                               *
+ * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION * CAUTION *
+ */
+
+if (class_exists('ParagonIE_Sodium_Compat', false)) {
+    return;
+}
+
+class ParagonIE_Sodium_Compat
+{
+    /**
+     * This parameter prevents the use of the PECL extension.
+     * It should only be used for unit testing.
+     *
+     * @var bool
+     */
+    public static $disableFallbackForUnitTests = false;
+
+    /**
+     * Use fast multiplication rather than our constant-time multiplication
+     * implementation. Can be enabled at runtime. Only enable this if you
+     * are absolutely certain that there is no timing leak on your platform.
+     *
+     * @var bool
+     */
+    public static $fastMult = false;
+
+    const LIBRARY_VERSION_MAJOR = 9;
+    const LIBRARY_VERSION_MINOR = 1;
+    const VERSION_STRING = 'polyfill-1.0.8';
+
+    // From libsodium
+    const BASE64_VARIANT_ORIGINAL = 1;
+    const BASE64_VARIANT_ORIGINAL_NO_PADDING = 3;
+    const BASE64_VARIANT_URLSAFE = 5;
+    const BASE64_VARIANT_URLSAFE_NO_PADDING = 7;
+    const CRYPTO_AEAD_AES256GCM_KEYBYTES = 32;
+    const CRYPTO_AEAD_AES256GCM_NSECBYTES = 0;
+    const CRYPTO_AEAD_AES256GCM_NPUBBYTES = 12;
+    const CRYPTO_AEAD_AES256GCM_ABYTES = 16;
+    const CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES = 32;
+    const CRYPTO_AEAD_CHACHA20POLY1305_NSECBYTES = 0;
+    const CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES = 8;
+    const CRYPTO_AEAD_CHACHA20POLY1305_ABYTES = 16;
+    const CRYPTO_AEAD_CHACHA20POLY1305_IETF_KEYBYTES = 32;
+    const CRYPTO_AEAD_CHACHA20POLY1305_IETF_NSECBYTES = 0;
+    const CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES = 12;
+    const CRYPTO_AEAD_CHACHA20POLY1305_IETF_ABYTES = 16;
+    const CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES = 32;
+    const CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NSECBYTES = 0;
+    const CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NPUBBYTES = 24;
+    const CRYPTO_AEAD_XCHACHA20POLY1305_IETF_ABYTES = 16;
+    const CRYPTO_AUTH_BYTES = 32;
+    const CRYPTO_AUTH_KEYBYTES = 32;
+    const CRYPTO_BOX_SEALBYTES = 16;
+    const CRYPTO_BOX_SECRETKEYBYTES = 32;
+    const CRYPTO_BOX_PUBLICKEYBYTES = 32;
+    const CRYPTO_BOX_KEYPAIRBYTES = 64;
+    const CRYPTO_BOX_MACBYTES = 16;
+    const CRYPTO_BOX_NONCEBYTES = 24;
+    const CRYPTO_BOX_SEEDBYTES = 32;
+    const CRYPTO_KDF_BYTES_MIN = 16;
+    const CRYPTO_KDF_BYTES_MAX = 64;
+    const CRYPTO_KDF_CONTEXTBYTES = 8;
+    const CRYPTO_KDF_KEYBYTES = 32;
+    const CRYPTO_KX_BYTES = 32;
+    const CRYPTO_KX_PRIMITIVE = 'x25519blake2b';
+    const CRYPTO_KX_SEEDBYTES = 32;
+    const CRYPTO_KX_KEYPAIRBYTES = 64;
+    const CRYPTO_KX_PUBLICKEYBYTES = 32;
+    const CRYPTO_KX_SECRETKEYBYTES = 32;
+    const CRYPTO_KX_SESSIONKEYBYTES = 32;
+    const CRYPTO_GENERICHASH_BYTES = 32;
+    const CRYPTO_GENERICHASH_BYTES_MIN = 16;
+    const CRYPTO_GENERICHASH_BYTES_MAX = 64;
+    const CRYPTO_GENERICHASH_KEYBYTES = 32;
+    const CRYPTO_GENERICHASH_KEYBYTES_MIN = 16;
+    const CRYPTO_GENERICHASH_KEYBYTES_MAX = 64;
+    const CRYPTO_PWHASH_SALTBYTES = 16;
+    const CRYPTO_PWHASH_STRPREFIX = '$argon2id$';
+    const CRYPTO_PWHASH_ALG_ARGON2I13 = 1;
+    const CRYPTO_PWHASH_ALG_ARGON2ID13 = 2;
+    const CRYPTO_PWHASH_MEMLIMIT_INTERACTIVE = 33554432;
+    const CRYPTO_PWHASH_OPSLIMIT_INTERACTIVE = 4;
+    const CRYPTO_PWHASH_MEMLIMIT_MODERATE = 134217728;
+    const CRYPTO_PWHASH_OPSLIMIT_MODERATE = 6;
+    const CRYPTO_PWHASH_MEMLIMIT_SENSITIVE = 536870912;
+    const CRYPTO_PWHASH_OPSLIMIT_SENSITIVE = 8;
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_SALTBYTES = 32;
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_STRPREFIX = '$7$';
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_OPSLIMIT_INTERACTIVE = 534288;
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_MEMLIMIT_INTERACTIVE = 16777216;
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_OPSLIMIT_SENSITIVE = 33554432;
+    const CRYPTO_PWHASH_SCRYPTSALSA208SHA256_MEMLIMIT_SENSITIVE = 1073741824;
+    const CRYPTO_SCALARMULT_BYTES = 32;
+    const CRYPTO_SCALARMULT_SCALARBYTES = 32;
+    const CRYPTO_SHORTHASH_BYTES = 8;
+    const CRYPTO_SHORTHASH_KEYBYTES = 16;
+    const CRYPTO_SECRETBOX_KEYBYTES = 32;
+    const CRYPTO_SECRETBOX_MACBYTES = 16;
+    const CRYPTO_SECRETBOX_NONCEBYTES = 24;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_ABYTES = 17;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_HEADERBYTES = 24;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_KEYBYTES = 32;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_TAG_PUSH = 0;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_TAG_PULL = 1;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_TAG_REKEY = 2;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_TAG_FINAL = 3;
+    const CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_MESSAGEBYTES_MAX = 0x3fffffff80;
+    const CRYPTO_SIGN_BYTES = 64;
+    const CRYPTO_SIGN_SEEDBYTES = 32;
+    const CRYPTO_SIGN_PUBLICKEYBYTES = 32;
+    const CRYPTO_SIGN_SECRETKEYBYTES = 64;
+    const CRYPTO_SIGN_KEYPAIRBYTES = 96;
+    const CRYPTO_STREAM_KEYBYTES = 32;
+    const CRYPTO_STREAM_NONCEBYTES = 24;
+
+    /**
+     * Add two numbers (little-endian unsigned), storing the value in the first
+     * parameter.
+     *
+     * This mutates $val.
+     *
+     * @param string $val
+     * @param string $addv
+     * @return void
+     * @throws SodiumException
+     */
+    public static function add(&$val, $addv)
+    {
+        $val_len = ParagonIE_Sodium_Core_Util::strlen($val);
+        $addv_len = ParagonIE_Sodium_Core_Util::strlen($addv);
+        if ($val_len !== $addv_len) {
+            throw new SodiumException('values must have the same length');
+        }
+        $A = ParagonIE_Sodium_Core_Util::stringToIntArray($val);
+        $B = ParagonIE_Sodium_Core_Util::stringToIntArray($addv);
+
+        $c = 0;
+        for ($i = 0; $i < $val_len; $i++) {
+            $c += ($A[$i] + $B[$i]);
+            $A[$i] = ($c & 0xff);
+            $c >>= 8;
+        }
+        $val = ParagonIE_Sodium_Core_Util::intArrayToString($A);
+    }
+
+    /**
+     * @param string $encoded
+     * @param int $variant
+     * @param string $ignore
+     * @return string
+     * @throws SodiumException
+     */
+    public static function base642bin($encoded, $variant, $ignore = '')
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($encoded, 'string', 1);
+
+        /** @var string $encoded */
+        $encoded = (string) $encoded;
+        if (ParagonIE_Sodium_Core_Util::strlen($encoded) === 0) {
+            return '';
+        }
+
+        // Just strip before decoding
+        if (!empty($ignore)) {
+            $encoded = str_replace($ignore, '', $encoded);
+        }
+
+        try {
+            switch ($variant) {
+                case self::BASE64_VARIANT_ORIGINAL:
+                    return ParagonIE_Sodium_Core_Base64_Original::decode($encoded, true);
+                case self::BASE64_VARIANT_ORIGINAL_NO_PADDING:
+                    return ParagonIE_Sodium_Core_Base64_Original::decode($encoded, false);
+                case self::BASE64_VARIANT_URLSAFE:
+                    return ParagonIE_Sodium_Core_Base64_UrlSafe::decode($encoded, true);
+                case self::BASE64_VARIANT_URLSAFE_NO_PADDING:
+                    return ParagonIE_Sodium_Core_Base64_UrlSafe::decode($encoded, false);
+                default:
+                    throw new SodiumException('invalid base64 variant identifier');
+            }
+        } catch (Exception $ex) {
+            if ($ex instanceof SodiumException) {
+                throw $ex;
+            }
+            throw new SodiumException('invalid base64 string');
+        }
+    }
+
+    /**
+     * @param string $decoded
+     * @param int $variant
+     * @return string
+     * @throws SodiumException
+     */
+    public static function bin2base64($decoded, $variant)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($decoded, 'string', 1);
+        /** @var string $decoded */
+        $decoded = (string) $decoded;
+        if (ParagonIE_Sodium_Core_Util::strlen($decoded) === 0) {
+            return '';
+        }
+
+        switch ($variant) {
+            case self::BASE64_VARIANT_ORIGINAL:
+                return ParagonIE_Sodium_Core_Base64_Original::encode($decoded);
+            case self::BASE64_VARIANT_ORIGINAL_NO_PADDING:
+                return ParagonIE_Sodium_Core_Base64_Original::encodeUnpadded($decoded);
+            case self::BASE64_VARIANT_URLSAFE:
+                return ParagonIE_Sodium_Core_Base64_UrlSafe::encode($decoded);
+            case self::BASE64_VARIANT_URLSAFE_NO_PADDING:
+                return ParagonIE_Sodium_Core_Base64_UrlSafe::encodeUnpadded($decoded);
+            default:
+                throw new SodiumException('invalid base64 variant identifier');
+        }
+    }
+
+    /**
+     * Cache-timing-safe implementation of bin2hex().
+     *
+     * @param string $string A string (probably raw binary)
+     * @return string        A hexadecimal-encoded string
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function bin2hex($string)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($string, 'string', 1);
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_bin2hex($string);
+        }
+        if (self::use_fallback('bin2hex')) {
+            return (string) call_user_func('\\Sodium\\bin2hex', $string);
+        }
+        return ParagonIE_Sodium_Core_Util::bin2hex($string);
+    }
+
+    /**
+     * Compare two strings, in constant-time.
+     * Compared to memcmp(), compare() is more useful for sorting.
+     *
+     * @param string $left  The left operand; must be a string
+     * @param string $right The right operand; must be a string
+     * @return int          If < 0 if the left operand is less than the right
+     *                      If = 0 if both strings are equal
+     *                      If > 0 if the right operand is less than the left
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function compare($left, $right)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($left, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($right, 'string', 2);
+
+        if (self::useNewSodiumAPI()) {
+            return (int) sodium_compare($left, $right);
+        }
+        if (self::use_fallback('compare')) {
+            return (int) call_user_func('\\Sodium\\compare', $left, $right);
+        }
+        return ParagonIE_Sodium_Core_Util::compare($left, $right);
+    }
+
+    /**
+     * Is AES-256-GCM even available to use?
+     *
+     * @return bool
+     * @psalm-suppress UndefinedFunction
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_aead_aes256gcm_is_available()
+    {
+        if (self::useNewSodiumAPI()) {
+            return sodium_crypto_aead_aes256gcm_is_available();
+        }
+        if (self::use_fallback('crypto_aead_aes256gcm_is_available')) {
+            return call_user_func('\\Sodium\\crypto_aead_aes256gcm_is_available');
+        }
+        if (PHP_VERSION_ID < 70100) {
+            // OpenSSL doesn't support AEAD before 7.1.0
+            return false;
+        }
+        if (!is_callable('openssl_encrypt') || !is_callable('openssl_decrypt')) {
+            // OpenSSL isn't installed
+            return false;
+        }
+        return (bool) in_array('aes-256-gcm', openssl_get_cipher_methods());
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data: Decryption
+     *
+     * Algorithm:
+     *     AES-256-GCM
+     *
+     * This mode uses a 64-bit random nonce with a 64-bit counter.
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     *
+     * @param string $ciphertext Encrypted message (with Poly1305 MAC appended)
+     * @param string $assocData  Authenticated Associated Data (unencrypted)
+     * @param string $nonce      Number to be used only Once; must be 8 bytes
+     * @param string $key        Encryption key
+     *
+     * @return string|bool       The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_aead_aes256gcm_decrypt(
+        $ciphertext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        if (!self::crypto_aead_aes256gcm_is_available()) {
+            throw new SodiumException('AES-256-GCM is not available');
+        }
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_AES256GCM_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_AES256GCM_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_AES256GCM_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_AES256GCM_KEYBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($ciphertext) < self::CRYPTO_AEAD_AES256GCM_ABYTES) {
+            throw new SodiumException('Message must be at least CRYPTO_AEAD_AES256GCM_ABYTES long');
+        }
+        if (!is_callable('openssl_decrypt')) {
+            throw new SodiumException('The OpenSSL extension is not installed, or openssl_decrypt() is not available');
+        }
+
+        /** @var string $ctext */
+        $ctext = ParagonIE_Sodium_Core_Util::substr($ciphertext, 0, -self::CRYPTO_AEAD_AES256GCM_ABYTES);
+        /** @var string $authTag */
+        $authTag = ParagonIE_Sodium_Core_Util::substr($ciphertext, -self::CRYPTO_AEAD_AES256GCM_ABYTES, 16);
+        return openssl_decrypt(
+            $ctext,
+            'aes-256-gcm',
+            $key,
+            OPENSSL_RAW_DATA,
+            $nonce,
+            $authTag,
+            $assocData
+        );
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data: Encryption
+     *
+     * Algorithm:
+     *     AES-256-GCM
+     *
+     * @param string $plaintext Message to be encrypted
+     * @param string $assocData Authenticated Associated Data (unencrypted)
+     * @param string $nonce     Number to be used only Once; must be 8 bytes
+     * @param string $key       Encryption key
+     *
+     * @return string           Ciphertext with a 16-byte GCM message
+     *                          authentication code appended
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_aead_aes256gcm_encrypt(
+        $plaintext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        if (!self::crypto_aead_aes256gcm_is_available()) {
+            throw new SodiumException('AES-256-GCM is not available');
+        }
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_AES256GCM_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_AES256GCM_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_AES256GCM_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_AES256GCM_KEYBYTES long');
+        }
+
+        if (!is_callable('openssl_encrypt')) {
+            throw new SodiumException('The OpenSSL extension is not installed, or openssl_encrypt() is not available');
+        }
+
+        $authTag = '';
+        $ciphertext = openssl_encrypt(
+            $plaintext,
+            'aes-256-gcm',
+            $key,
+            OPENSSL_RAW_DATA,
+            $nonce,
+            $authTag,
+            $assocData
+        );
+        return $ciphertext . $authTag;
+    }
+
+    /**
+     * Return a secure random key for use with the AES-256-GCM
+     * symmetric AEAD interface.
+     *
+     * @return string
+     * @throws Exception
+     * @throws Error
+     */
+    public static function crypto_aead_aes256gcm_keygen()
+    {
+        return random_bytes(self::CRYPTO_AEAD_AES256GCM_KEYBYTES);
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data: Decryption
+     *
+     * Algorithm:
+     *     ChaCha20-Poly1305
+     *
+     * This mode uses a 64-bit random nonce with a 64-bit counter.
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     *
+     * @param string $ciphertext Encrypted message (with Poly1305 MAC appended)
+     * @param string $assocData  Authenticated Associated Data (unencrypted)
+     * @param string $nonce      Number to be used only Once; must be 8 bytes
+     * @param string $key        Encryption key
+     *
+     * @return string            The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_aead_chacha20poly1305_decrypt(
+        $ciphertext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($ciphertext) < self::CRYPTO_AEAD_CHACHA20POLY1305_ABYTES) {
+            throw new SodiumException('Message must be at least CRYPTO_AEAD_CHACHA20POLY1305_ABYTES long');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            /**
+             * @psalm-suppress InvalidReturnStatement
+             * @psalm-suppress FalsableReturnStatement
+             */
+            return sodium_crypto_aead_chacha20poly1305_decrypt(
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (self::use_fallback('crypto_aead_chacha20poly1305_decrypt')) {
+            return call_user_func(
+                '\\Sodium\\crypto_aead_chacha20poly1305_decrypt',
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_chacha20poly1305_decrypt(
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_chacha20poly1305_decrypt(
+            $ciphertext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data
+     *
+     * Algorithm:
+     *     ChaCha20-Poly1305
+     *
+     * This mode uses a 64-bit random nonce with a 64-bit counter.
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     *
+     * @param string $plaintext Message to be encrypted
+     * @param string $assocData Authenticated Associated Data (unencrypted)
+     * @param string $nonce     Number to be used only Once; must be 8 bytes
+     * @param string $key       Encryption key
+     *
+     * @return string           Ciphertext with a 16-byte Poly1305 message
+     *                          authentication code appended
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_aead_chacha20poly1305_encrypt(
+        $plaintext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES long');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_aead_chacha20poly1305_encrypt(
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (self::use_fallback('crypto_aead_chacha20poly1305_encrypt')) {
+            return (string) call_user_func(
+                '\\Sodium\\crypto_aead_chacha20poly1305_encrypt',
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_chacha20poly1305_encrypt(
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_chacha20poly1305_encrypt(
+            $plaintext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data: Decryption
+     *
+     * Algorithm:
+     *     ChaCha20-Poly1305
+     *
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     * Regular mode uses a 64-bit random nonce with a 64-bit counter.
+     *
+     * @param string $ciphertext Encrypted message (with Poly1305 MAC appended)
+     * @param string $assocData  Authenticated Associated Data (unencrypted)
+     * @param string $nonce      Number to be used only Once; must be 12 bytes
+     * @param string $key        Encryption key
+     *
+     * @return string            The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_aead_chacha20poly1305_ietf_decrypt(
+        $ciphertext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($ciphertext) < self::CRYPTO_AEAD_CHACHA20POLY1305_ABYTES) {
+            throw new SodiumException('Message must be at least CRYPTO_AEAD_CHACHA20POLY1305_ABYTES long');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            /**
+             * @psalm-suppress InvalidReturnStatement
+             * @psalm-suppress FalsableReturnStatement
+             */
+            return sodium_crypto_aead_chacha20poly1305_ietf_decrypt(
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (self::use_fallback('crypto_aead_chacha20poly1305_ietf_decrypt')) {
+            return call_user_func(
+                '\\Sodium\\crypto_aead_chacha20poly1305_ietf_decrypt',
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_chacha20poly1305_ietf_decrypt(
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_chacha20poly1305_ietf_decrypt(
+            $ciphertext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Return a secure random key for use with the ChaCha20-Poly1305
+     * symmetric AEAD interface.
+     *
+     * @return string
+     * @throws Exception
+     * @throws Error
+     */
+    public static function crypto_aead_chacha20poly1305_keygen()
+    {
+        return random_bytes(self::CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES);
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data
+     *
+     * Algorithm:
+     *     ChaCha20-Poly1305
+     *
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     * Regular mode uses a 64-bit random nonce with a 64-bit counter.
+     *
+     * @param string $plaintext Message to be encrypted
+     * @param string $assocData Authenticated Associated Data (unencrypted)
+     * @param string $nonce Number to be used only Once; must be 8 bytes
+     * @param string $key Encryption key
+     *
+     * @return string           Ciphertext with a 16-byte Poly1305 message
+     *                          authentication code appended
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_aead_chacha20poly1305_ietf_encrypt(
+        $plaintext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = ''
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES long');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_aead_chacha20poly1305_ietf_encrypt(
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (self::use_fallback('crypto_aead_chacha20poly1305_ietf_encrypt')) {
+            return (string) call_user_func(
+                '\\Sodium\\crypto_aead_chacha20poly1305_ietf_encrypt',
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_chacha20poly1305_ietf_encrypt(
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_chacha20poly1305_ietf_encrypt(
+            $plaintext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Return a secure random key for use with the ChaCha20-Poly1305
+     * symmetric AEAD interface. (IETF version)
+     *
+     * @return string
+     * @throws Exception
+     * @throws Error
+     */
+    public static function crypto_aead_chacha20poly1305_ietf_keygen()
+    {
+        return random_bytes(self::CRYPTO_AEAD_CHACHA20POLY1305_IETF_KEYBYTES);
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data: Decryption
+     *
+     * Algorithm:
+     *     XChaCha20-Poly1305
+     *
+     * This mode uses a 64-bit random nonce with a 64-bit counter.
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     *
+     * @param string $ciphertext   Encrypted message (with Poly1305 MAC appended)
+     * @param string $assocData    Authenticated Associated Data (unencrypted)
+     * @param string $nonce        Number to be used only Once; must be 8 bytes
+     * @param string $key          Encryption key
+     * @param bool   $dontFallback Don't fallback to ext/sodium
+     *
+     * @return string|bool         The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_aead_xchacha20poly1305_ietf_decrypt(
+        $ciphertext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = '',
+        $dontFallback = false
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($ciphertext) < self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_ABYTES) {
+            throw new SodiumException('Message must be at least CRYPTO_AEAD_XCHACHA20POLY1305_IETF_ABYTES long');
+        }
+        if (self::useNewSodiumAPI() && !$dontFallback) {
+            if (is_callable('sodium_crypto_aead_xchacha20poly1305_ietf_decrypt')) {
+                return sodium_crypto_aead_xchacha20poly1305_ietf_decrypt(
+                    $ciphertext,
+                    $assocData,
+                    $nonce,
+                    $key
+                );
+            }
+        }
+
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_xchacha20poly1305_ietf_decrypt(
+                $ciphertext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_xchacha20poly1305_ietf_decrypt(
+            $ciphertext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Authenticated Encryption with Associated Data
+     *
+     * Algorithm:
+     *     XChaCha20-Poly1305
+     *
+     * This mode uses a 64-bit random nonce with a 64-bit counter.
+     * IETF mode uses a 96-bit random nonce with a 32-bit counter.
+     *
+     * @param string $plaintext    Message to be encrypted
+     * @param string $assocData    Authenticated Associated Data (unencrypted)
+     * @param string $nonce        Number to be used only Once; must be 8 bytes
+     * @param string $key          Encryption key
+     * @param bool   $dontFallback Don't fallback to ext/sodium
+     *
+     * @return string           Ciphertext with a 16-byte Poly1305 message
+     *                          authentication code appended
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_aead_xchacha20poly1305_ietf_encrypt(
+        $plaintext = '',
+        $assocData = '',
+        $nonce = '',
+        $key = '',
+        $dontFallback = false
+    ) {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($assocData, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 4);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NPUBBYTES) {
+            throw new SodiumException('Nonce must be CRYPTO_AEAD_XCHACHA20POLY1305_NPUBBYTES long');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES) {
+            throw new SodiumException('Key must be CRYPTO_AEAD_XCHACHA20POLY1305_KEYBYTES long');
+        }
+        if (self::useNewSodiumAPI() && !$dontFallback) {
+            if (is_callable('sodium_crypto_aead_xchacha20poly1305_ietf_encrypt')) {
+                return sodium_crypto_aead_xchacha20poly1305_ietf_encrypt(
+                    $plaintext,
+                    $assocData,
+                    $nonce,
+                    $key
+                );
+            }
+        }
+
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::aead_xchacha20poly1305_ietf_encrypt(
+                $plaintext,
+                $assocData,
+                $nonce,
+                $key
+            );
+        }
+        return ParagonIE_Sodium_Crypto::aead_xchacha20poly1305_ietf_encrypt(
+            $plaintext,
+            $assocData,
+            $nonce,
+            $key
+        );
+    }
+
+    /**
+     * Return a secure random key for use with the XChaCha20-Poly1305
+     * symmetric AEAD interface.
+     *
+     * @return string
+     * @throws Exception
+     * @throws Error
+     */
+    public static function crypto_aead_xchacha20poly1305_ietf_keygen()
+    {
+        return random_bytes(self::CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES);
+    }
+
+    /**
+     * Authenticate a message. Uses symmetric-key cryptography.
+     *
+     * Algorithm:
+     *     HMAC-SHA512-256. Which is HMAC-SHA-512 truncated to 256 bits.
+     *     Not to be confused with HMAC-SHA-512/256 which would use the
+     *     SHA-512/256 hash function (uses different initial parameters
+     *     but still truncates to 256 bits to sidestep length-extension
+     *     attacks).
+     *
+     * @param string $message Message to be authenticated
+     * @param string $key Symmetric authentication key
+     * @return string         Message authentication code
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_auth($message, $key)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($message, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 2);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AUTH_KEYBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_AUTH_KEYBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_auth($message, $key);
+        }
+        if (self::use_fallback('crypto_auth')) {
+            return (string) call_user_func('\\Sodium\\crypto_auth', $message, $key);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::auth($message, $key);
+        }
+        return ParagonIE_Sodium_Crypto::auth($message, $key);
+    }
+
+    /**
+     * @return string
+     * @throws Exception
+     * @throws Error
+     */
+    public static function crypto_auth_keygen()
+    {
+        return random_bytes(self::CRYPTO_AUTH_KEYBYTES);
+    }
+
+    /**
+     * Verify the MAC of a message previously authenticated with crypto_auth.
+     *
+     * @param string $mac Message authentication code
+     * @param string $message Message whose authenticity you are attempting to
+     *                        verify (with a given MAC and key)
+     * @param string $key Symmetric authentication key
+     * @return bool           TRUE if authenticated, FALSE otherwise
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_auth_verify($mac, $message, $key)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($mac, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($message, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 3);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($mac) !== self::CRYPTO_AUTH_BYTES) {
+            throw new SodiumException('Argument 1 must be CRYPTO_AUTH_BYTES long.');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($key) !== self::CRYPTO_AUTH_KEYBYTES) {
+            throw new SodiumException('Argument 3 must be CRYPTO_AUTH_KEYBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (bool) sodium_crypto_auth_verify($mac, $message, $key);
+        }
+        if (self::use_fallback('crypto_auth_verify')) {
+            return (bool) call_user_func('\\Sodium\\crypto_auth_verify', $mac, $message, $key);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::auth_verify($mac, $message, $key);
+        }
+        return ParagonIE_Sodium_Crypto::auth_verify($mac, $message, $key);
+    }
+
+    /**
+     * Authenticated asymmetric-key encryption. Both the sender and recipient
+     * may decrypt messages.
+     *
+     * Algorithm: X25519-XSalsa20-Poly1305.
+     *     X25519: Elliptic-Curve Diffie Hellman over Curve25519.
+     *     XSalsa20: Extended-nonce variant of salsa20.
+     *     Poyl1305: Polynomial MAC for one-time message authentication.
+     *
+     * @param string $plaintext The message to be encrypted
+     * @param string $nonce A Number to only be used Once; must be 24 bytes
+     * @param string $keypair Your secret key and your recipient's public key
+     * @return string           Ciphertext with 16-byte Poly1305 MAC
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box($plaintext, $nonce, $keypair)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($keypair, 'string', 3);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_BOX_NONCEBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_BOX_NONCEBYTES long.');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($keypair) !== self::CRYPTO_BOX_KEYPAIRBYTES) {
+            throw new SodiumException('Argument 3 must be CRYPTO_BOX_KEYPAIRBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box($plaintext, $nonce, $keypair);
+        }
+        if (self::use_fallback('crypto_box')) {
+            return (string) call_user_func('\\Sodium\\crypto_box', $plaintext, $nonce, $keypair);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box($plaintext, $nonce, $keypair);
+        }
+        return ParagonIE_Sodium_Crypto::box($plaintext, $nonce, $keypair);
+    }
+
+    /**
+     * Anonymous public-key encryption. Only the recipient may decrypt messages.
+     *
+     * Algorithm: X25519-XSalsa20-Poly1305, as with crypto_box.
+     *     The sender's X25519 keypair is ephemeral.
+     *     Nonce is generated from the BLAKE2b hash of both public keys.
+     *
+     * This provides ciphertext integrity.
+     *
+     * @param string $plaintext Message to be sealed
+     * @param string $publicKey Your recipient's public key
+     * @return string           Sealed message that only your recipient can
+     *                          decrypt
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_seal($plaintext, $publicKey)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($plaintext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($publicKey, 'string', 2);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($publicKey) !== self::CRYPTO_BOX_PUBLICKEYBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_BOX_PUBLICKEYBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_seal($plaintext, $publicKey);
+        }
+        if (self::use_fallback('crypto_box_seal')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_seal', $plaintext, $publicKey);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_seal($plaintext, $publicKey);
+        }
+        return ParagonIE_Sodium_Crypto::box_seal($plaintext, $publicKey);
+    }
+
+    /**
+     * Opens a message encrypted with crypto_box_seal(). Requires
+     * the recipient's keypair (sk || pk) to decrypt successfully.
+     *
+     * This validates ciphertext integrity.
+     *
+     * @param string $ciphertext Sealed message to be opened
+     * @param string $keypair    Your crypto_box keypair
+     * @return string            The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_box_seal_open($ciphertext, $keypair)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($keypair, 'string', 2);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($keypair) !== self::CRYPTO_BOX_KEYPAIRBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_BOX_KEYPAIRBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            /**
+             * @psalm-suppress InvalidReturnStatement
+             * @psalm-suppress FalsableReturnStatement
+             */
+            return sodium_crypto_box_seal_open($ciphertext, $keypair);
+        }
+        if (self::use_fallback('crypto_box_seal_open')) {
+            return call_user_func('\\Sodium\\crypto_box_seal_open', $ciphertext, $keypair);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_seal_open($ciphertext, $keypair);
+        }
+        return ParagonIE_Sodium_Crypto::box_seal_open($ciphertext, $keypair);
+    }
+
+    /**
+     * Generate a new random X25519 keypair.
+     *
+     * @return string A 64-byte string; the first 32 are your secret key, while
+     *                the last 32 are your public key. crypto_box_secretkey()
+     *                and crypto_box_publickey() exist to separate them so you
+     *                don't accidentally get them mixed up!
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_keypair()
+    {
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_keypair();
+        }
+        if (self::use_fallback('crypto_box_keypair')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_keypair');
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_keypair();
+        }
+        return ParagonIE_Sodium_Crypto::box_keypair();
+    }
+
+    /**
+     * Combine two keys into a keypair for use in library methods that expect
+     * a keypair. This doesn't necessarily have to be the same person's keys.
+     *
+     * @param string $secretKey Secret key
+     * @param string $publicKey Public key
+     * @return string    Keypair
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_keypair_from_secretkey_and_publickey($secretKey, $publicKey)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($secretKey, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($publicKey, 'string', 2);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($secretKey) !== self::CRYPTO_BOX_SECRETKEYBYTES) {
+            throw new SodiumException('Argument 1 must be CRYPTO_BOX_SECRETKEYBYTES long.');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($publicKey) !== self::CRYPTO_BOX_PUBLICKEYBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_BOX_PUBLICKEYBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_keypair_from_secretkey_and_publickey($secretKey, $publicKey);
+        }
+        if (self::use_fallback('crypto_box_keypair_from_secretkey_and_publickey')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_keypair_from_secretkey_and_publickey', $secretKey, $publicKey);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_keypair_from_secretkey_and_publickey($secretKey, $publicKey);
+        }
+        return ParagonIE_Sodium_Crypto::box_keypair_from_secretkey_and_publickey($secretKey, $publicKey);
+    }
+
+    /**
+     * Decrypt a message previously encrypted with crypto_box().
+     *
+     * @param string $ciphertext Encrypted message
+     * @param string $nonce      Number to only be used Once; must be 24 bytes
+     * @param string $keypair    Your secret key and the sender's public key
+     * @return string            The original plaintext message
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress MixedInferredReturnType
+     * @psalm-suppress MixedReturnStatement
+     */
+    public static function crypto_box_open($ciphertext, $nonce, $keypair)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ciphertext, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($nonce, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($keypair, 'string', 3);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($ciphertext) < self::CRYPTO_BOX_MACBYTES) {
+            throw new SodiumException('Argument 1 must be at least CRYPTO_BOX_MACBYTES long.');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($nonce) !== self::CRYPTO_BOX_NONCEBYTES) {
+            throw new SodiumException('Argument 2 must be CRYPTO_BOX_NONCEBYTES long.');
+        }
+        if (ParagonIE_Sodium_Core_Util::strlen($keypair) !== self::CRYPTO_BOX_KEYPAIRBYTES) {
+            throw new SodiumException('Argument 3 must be CRYPTO_BOX_KEYPAIRBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            /**
+             * @psalm-suppress InvalidReturnStatement
+             * @psalm-suppress FalsableReturnStatement
+             */
+            return sodium_crypto_box_open($ciphertext, $nonce, $keypair);
+        }
+        if (self::use_fallback('crypto_box_open')) {
+            return call_user_func('\\Sodium\\crypto_box_open', $ciphertext, $nonce, $keypair);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_open($ciphertext, $nonce, $keypair);
+        }
+        return ParagonIE_Sodium_Crypto::box_open($ciphertext, $nonce, $keypair);
+    }
+
+    /**
+     * Extract the public key from a crypto_box keypair.
+     *
+     * @param string $keypair Keypair containing secret and public key
+     * @return string         Your crypto_box public key
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_publickey($keypair)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($keypair, 'string', 1);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($keypair) !== self::CRYPTO_BOX_KEYPAIRBYTES) {
+            throw new SodiumException('Argument 1 must be CRYPTO_BOX_KEYPAIRBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_publickey($keypair);
+        }
+        if (self::use_fallback('crypto_box_publickey')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_publickey', $keypair);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_publickey($keypair);
+        }
+        return ParagonIE_Sodium_Crypto::box_publickey($keypair);
+    }
+
+    /**
+     * Calculate the X25519 public key from a given X25519 secret key.
+     *
+     * @param string $secretKey Any X25519 secret key
+     * @return string           The corresponding X25519 public key
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_publickey_from_secretkey($secretKey)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($secretKey, 'string', 1);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($secretKey) !== self::CRYPTO_BOX_SECRETKEYBYTES) {
+            throw new SodiumException('Argument 1 must be CRYPTO_BOX_SECRETKEYBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_publickey_from_secretkey($secretKey);
+        }
+        if (self::use_fallback('crypto_box_publickey_from_secretkey')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_publickey_from_secretkey', $secretKey);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_publickey_from_secretkey($secretKey);
+        }
+        return ParagonIE_Sodium_Crypto::box_publickey_from_secretkey($secretKey);
+    }
+
+    /**
+     * Extract the secret key from a crypto_box keypair.
+     *
+     * @param string $keypair
+     * @return string         Your crypto_box secret key
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_box_secretkey($keypair)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($keypair, 'string', 1);
+
+        /* Input validation: */
+        if (ParagonIE_Sodium_Core_Util::strlen($keypair) !== self::CRYPTO_BOX_KEYPAIRBYTES) {
+            throw new SodiumException('Argument 1 must be CRYPTO_BOX_KEYPAIRBYTES long.');
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_secretkey($keypair);
+        }
+        if (self::use_fallback('crypto_box_secretkey')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_secretkey', $keypair);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_secretkey($keypair);
+        }
+        return ParagonIE_Sodium_Crypto::box_secretkey($keypair);
+    }
+
+    /**
+     * Generate an X25519 keypair from a seed.
+     *
+     * @param string $seed
+     * @return string
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress UndefinedFunction
+     */
+    public static function crypto_box_seed_keypair($seed)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($seed, 'string', 1);
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_box_seed_keypair($seed);
+        }
+        if (self::use_fallback('crypto_box_seed_keypair')) {
+            return (string) call_user_func('\\Sodium\\crypto_box_seed_keypair', $seed);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::box_seed_keypair($seed);
+        }
+        return ParagonIE_Sodium_Crypto::box_seed_keypair($seed);
+    }
+
+    /**
+     * Calculates a BLAKE2b hash, with an optional key.
+     *
+     * @param string      $message The message to be hashed
+     * @param string|null $key     If specified, must be a string between 16
+     *                             and 64 bytes long
+     * @param int         $length  Output length in bytes; must be between 16
+     *                             and 64 (default = 32)
+     * @return string              Raw binary
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_generichash($message, $key = '', $length = self::CRYPTO_GENERICHASH_BYTES)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($message, 'string', 1);
+        if (is_null($key)) {
+            $key = '';
+        }
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($length, 'int', 3);
+
+        /* Input validation: */
+        if (!empty($key)) {
+            if (ParagonIE_Sodium_Core_Util::strlen($key) < self::CRYPTO_GENERICHASH_KEYBYTES_MIN) {
+                throw new SodiumException('Unsupported key size. Must be at least CRYPTO_GENERICHASH_KEYBYTES_MIN bytes long.');
+            }
+            if (ParagonIE_Sodium_Core_Util::strlen($key) > self::CRYPTO_GENERICHASH_KEYBYTES_MAX) {
+                throw new SodiumException('Unsupported key size. Must be at most CRYPTO_GENERICHASH_KEYBYTES_MAX bytes long.');
+            }
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return (string) sodium_crypto_generichash($message, $key, $length);
+        }
+        if (self::use_fallback('crypto_generichash')) {
+            return (string) call_user_func('\\Sodium\\crypto_generichash', $message, $key, $length);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::generichash($message, $key, $length);
+        }
+        return ParagonIE_Sodium_Crypto::generichash($message, $key, $length);
+    }
+
+    /**
+     * Get the final BLAKE2b hash output for a given context.
+     *
+     * @param string $ctx BLAKE2 hashing context. Generated by crypto_generichash_init().
+     * @param int $length Hash output size.
+     * @return string     Final BLAKE2b hash.
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress ReferenceConstraintViolation
+     * @psalm-suppress ConflictingReferenceConstraint
+     */
+    public static function crypto_generichash_final(&$ctx, $length = self::CRYPTO_GENERICHASH_BYTES)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ctx, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($length, 'int', 2);
+
+        if (self::useNewSodiumAPI()) {
+            return sodium_crypto_generichash_final($ctx, $length);
+        }
+        if (self::use_fallback('crypto_generichash_final')) {
+            $func = '\\Sodium\\crypto_generichash_final';
+            return (string) $func($ctx, $length);
+        }
+        if ($length < 1) {
+            try {
+                self::memzero($ctx);
+            } catch (SodiumException $ex) {
+                unset($ctx);
+            }
+            return '';
+        }
+        if (PHP_INT_SIZE === 4) {
+            $result = ParagonIE_Sodium_Crypto32::generichash_final($ctx, $length);
+        } else {
+            $result = ParagonIE_Sodium_Crypto::generichash_final($ctx, $length);
+        }
+        try {
+            self::memzero($ctx);
+        } catch (SodiumException $ex) {
+            unset($ctx);
+        }
+        return $result;
+    }
+
+    /**
+     * Initialize a BLAKE2b hashing context, for use in a streaming interface.
+     *
+     * @param string|null $key If specified must be a string between 16 and 64 bytes
+     * @param int $length      The size of the desired hash output
+     * @return string          A BLAKE2 hashing context, encoded as a string
+     *                         (To be 100% compatible with ext/libsodium)
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_generichash_init($key = '', $length = self::CRYPTO_GENERICHASH_BYTES)
+    {
+        /* Type checks: */
+        if (is_null($key)) {
+            $key = '';
+        }
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($length, 'int', 2);
+
+        /* Input validation: */
+        if (!empty($key)) {
+            if (ParagonIE_Sodium_Core_Util::strlen($key) < self::CRYPTO_GENERICHASH_KEYBYTES_MIN) {
+                throw new SodiumException('Unsupported key size. Must be at least CRYPTO_GENERICHASH_KEYBYTES_MIN bytes long.');
+            }
+            if (ParagonIE_Sodium_Core_Util::strlen($key) > self::CRYPTO_GENERICHASH_KEYBYTES_MAX) {
+                throw new SodiumException('Unsupported key size. Must be at most CRYPTO_GENERICHASH_KEYBYTES_MAX bytes long.');
+            }
+        }
+
+        if (self::useNewSodiumAPI()) {
+            return sodium_crypto_generichash_init($key, $length);
+        }
+        if (self::use_fallback('crypto_generichash_init')) {
+            return (string) call_user_func('\\Sodium\\crypto_generichash_init', $key, $length);
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::generichash_init($key, $length);
+        }
+        return ParagonIE_Sodium_Crypto::generichash_init($key, $length);
+    }
+
+    /**
+     * Initialize a BLAKE2b hashing context, for use in a streaming interface.
+     *
+     * @param string|null $key If specified must be a string between 16 and 64 bytes
+     * @param int $length      The size of the desired hash output
+     * @param string $salt     Salt (up to 16 bytes)
+     * @param string $personal Personalization string (up to 16 bytes)
+     * @return string          A BLAKE2 hashing context, encoded as a string
+     *                         (To be 100% compatible with ext/libsodium)
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     */
+    public static function crypto_generichash_init_salt_personal(
+        $key = '',
+        $length = self::CRYPTO_GENERICHASH_BYTES,
+        $salt = '',
+        $personal = ''
+    ) {
+        /* Type checks: */
+        if (is_null($key)) {
+            $key = '';
+        }
+        ParagonIE_Sodium_Core_Util::declareScalarType($key, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($length, 'int', 2);
+        ParagonIE_Sodium_Core_Util::declareScalarType($salt, 'string', 3);
+        ParagonIE_Sodium_Core_Util::declareScalarType($personal, 'string', 4);
+        $salt = str_pad($salt, 16, "\0", STR_PAD_RIGHT);
+        $personal = str_pad($personal, 16, "\0", STR_PAD_RIGHT);
+
+        /* Input validation: */
+        if (!empty($key)) {
+            /*
+            if (ParagonIE_Sodium_Core_Util::strlen($key) < self::CRYPTO_GENERICHASH_KEYBYTES_MIN) {
+                throw new SodiumException('Unsupported key size. Must be at least CRYPTO_GENERICHASH_KEYBYTES_MIN bytes long.');
+            }
+            */
+            if (ParagonIE_Sodium_Core_Util::strlen($key) > self::CRYPTO_GENERICHASH_KEYBYTES_MAX) {
+                throw new SodiumException('Unsupported key size. Must be at most CRYPTO_GENERICHASH_KEYBYTES_MAX bytes long.');
+            }
+        }
+        if (PHP_INT_SIZE === 4) {
+            return ParagonIE_Sodium_Crypto32::generichash_init_salt_personal($key, $length, $salt, $personal);
+        }
+        return ParagonIE_Sodium_Crypto::generichash_init_salt_personal($key, $length, $salt, $personal);
+    }
+
+    /**
+     * Update a BLAKE2b hashing context with additional data.
+     *
+     * @param string $ctx    BLAKE2 hashing context. Generated by crypto_generichash_init().
+     *                       $ctx is passed by reference and gets updated in-place.
+     * @param-out string $ctx
+     * @param string $message The message to append to the existing hash state.
+     * @return void
+     * @throws SodiumException
+     * @throws TypeError
+     * @psalm-suppress MixedArgument
+     * @psalm-suppress ReferenceConstraintViolation
+     */
+    public static function crypto_generichash_update(&$ctx, $message)
+    {
+        /* Type checks: */
+        ParagonIE_Sodium_Core_Util::declareScalarType($ctx, 'string', 1);
+        ParagonIE_Sodium_Core_Util::declareScalarType($message, 'string', 2);
+
+        if (self::useNewSodiumAPI()) {
+            sodium_crypto_generichash_update($ctx, $message);
+            return;
+        }
+        if (self::use_fallback('crypto_generichash_update')) {
+            $func = '\\Sodium\\crypto_generichash_update';
+            $func($ctx, $message);
+            return;
+        }
+        if (PHP_INT_SIZE === 4) {
+            $ctx = ParagonIE_Sodium_Crypto32::generichash_update($ctx, $message);
+        } else {
+