From 2e83d0b636c1bfe3fc6d1916f1442dcc151d0772 Mon Sep 17 00:00:00 2001
From: Tim Beck <socaltdb@gmail.com>
Date: Sun, 16 Jan 2022 23:26:40 -0800
Subject: [PATCH] crypto/cipher: optimize safeXORBytes

Optimize safeXORBytes based on this conversation: https://github.com/golang/go/issues/35381
---
 src/crypto/cipher/xor_generic.go | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/src/crypto/cipher/xor_generic.go b/src/crypto/cipher/xor_generic.go
index 43517a8e20329b..dd29aa16069203 100644
--- a/src/crypto/cipher/xor_generic.go
+++ b/src/crypto/cipher/xor_generic.go
@@ -63,7 +63,22 @@ func fastXORBytes(dst, a, b []byte, n int) {
 
 // n needs to be smaller or equal than the length of a and b.
 func safeXORBytes(dst, a, b []byte, n int) {
-	for i := 0; i < n; i++ {
+	// Load multiple bytes so the compiler can recognize
+	// and optimize them into single multi-byte loads
+	w := n / 8
+	for i := 0; i < w; i++ {
+		offset := i * 8
+		first32 := uint32(a[offset]) | uint32(a[offset+1])<<8 | uint32(a[offset+2])<<16 | uint32(a[offset+3])<<24
+		first32 ^= uint32(b[offset]) | uint32(b[offset+1])<<8 | uint32(b[offset+2])<<16 | uint32(b[offset+3])<<24
+		second32 := uint32(a[offset+4]) | uint32(a[offset+5])<<8 | uint32(a[offset+6])<<16 | uint32(a[offset+7])<<24
+		second32 ^= uint32(b[offset+4]) | uint32(b[offset+5])<<8 | uint32(b[offset+6])<<16 | uint32(b[offset+7])<<24
+		for j := 0; j < 4; j++ {
+			dst[offset+j] = byte(first32 >> (j * 8))
+			dst[offset+j+4] = byte(second32 >> (j * 8))
+		}
+	}
+
+	for i := w * 8; i < n; i++ {
 		dst[i] = a[i] ^ b[i]
 	}
 }