Fix extra args leak

dstogov · dstogov · commit 3dde6fc4ac0e · 2020-09-23T00:21:39.000+03:00
diff --git a/ext/opcache/jit/zend_jit_internal.h b/ext/opcache/jit/zend_jit_internal.h
@@ -427,6 +427,9 @@ struct _zend_jit_trace_stack_frame {
 #define TRACE_FRAME_NO_NEED_REKEASE_THIS(frame) \
 	((frame)->_info & TRACE_FRAME_MASK_NO_NEED_RELEASE_THIS)
 
+#define TRACE_FRAME_SET_UNKNOWM_NUM_ARGS(frame) do { \
+		(frame)->_info |= (0xffff << TRACE_FRAME_SHIFT_NUM_ARGS); \
+	} while (0)
 #define TRACE_FRAME_SET_RETURN_SSA_VAR(frame, var) do { \
 		(frame)->_info = var; \
 	} while (0)
diff --git a/ext/opcache/jit/zend_jit_trace.c b/ext/opcache/jit/zend_jit_trace.c
@@ -5091,6 +5091,13 @@ static const void *zend_jit_trace(zend_jit_trace_rec *trace_buffer, uint32_t par
 							}
 						}
 						goto done;
+					case ZEND_SEND_ARRAY:
+					case ZEND_SEND_UNPACK:
+						if (JIT_G(current_frame)
+						 && JIT_G(current_frame)->call) {
+							TRACE_FRAME_SET_UNKNOWM_NUM_ARGS(JIT_G(current_frame)->call);
+						}
+						break;
 					default:
 						break;
 				}

Original file line number	Diff line number	Diff line change
`@@ -5091,6 +5091,13 @@ static const void zend_jit_trace(zend_jit_trace_rec trace_buffer, uint32_t par`
`5091`	`5091`	`}`
`5092`	`5092`	`}`
`5093`	`5093`	`goto done;`
	`5094`	`+ case ZEND_SEND_ARRAY:`
	`5095`	`+ case ZEND_SEND_UNPACK:`
	`5096`	`+ if (JIT_G(current_frame)`
	`5097`	`+ && JIT_G(current_frame)->call) {`
	`5098`	`+ TRACE_FRAME_SET_UNKNOWM_NUM_ARGS(JIT_G(current_frame)->call);`
	`5099`	`+ }`
	`5100`	`+ break;`
`5094`	`5101`	`default:`
`5095`	`5102`	`break;`
`5096`	`5103`	`}`