Merge branch 'PHP-8.3' into PHP-8.4

* PHP-8.3: Fix use-of-uninitialized-value in zend_get_arg_offset_by_name()

Author: iluuu1994

Zend/zend_execute.c

@@ -5264,9 +5264,9 @@ static zend_always_inline uint32_t zend_get_arg_offset_by_name(
 if (EXPECTED(fbc->type == ZEND_USER_FUNCTION)
 || EXPECTED(fbc->common.fn_flags & ZEND_ACC_USER_ARG_INFO)) {
 for (uint32_t i = 0; i < num_args; i++) {
-zend_arg_info *arg_info = &fbc->op_array.arg_info[i];
+zend_arg_info *arg_info = &fbc->common.arg_info[i];
 if (zend_string_equals(arg_name, arg_info->name)) {
-if (!fbc->op_array.refcount || !(fbc->op_array.fn_flags & ZEND_ACC_CLOSURE)) {
+if (fbc->type == ZEND_USER_FUNCTION && (!fbc->op_array.refcount || !(fbc->op_array.fn_flags & ZEND_ACC_CLOSURE))) {
 *cache_slot = unique_id;
 *(uintptr_t *)(cache_slot + 1) = i;
 }
@@ -5286,7 +5286,10 @@ static zend_always_inline uint32_t zend_get_arg_offset_by_name(
 }
 
 if (fbc->common.fn_flags & ZEND_ACC_VARIADIC) {
-if (fbc->type == ZEND_INTERNAL_FUNCTION || !fbc->op_array.refcount || !(fbc->op_array.fn_flags & ZEND_ACC_CLOSURE)) {
+if ((fbc->type == ZEND_USER_FUNCTION
+ && (!fbc->op_array.refcount || !(fbc->op_array.fn_flags & ZEND_ACC_CLOSURE)))
+ || (fbc->type == ZEND_INTERNAL_FUNCTION
+ && !(fbc->common.fn_flags & ZEND_ACC_USER_ARG_INFO))) {
 *cache_slot = unique_id;
 *(uintptr_t *)(cache_slot + 1) = fbc->common.num_args;
 }