From 26bb0fe24b96f00d4df59fe0af464e22a2130958 Mon Sep 17 00:00:00 2001
From: Mike Pall <mike>
Date: Sat, 5 Feb 2011 23:01:10 +0100
Subject: [PATCH] FFI: Limit number of arguments for recorded calls.

---
 src/lj_crecord.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/lj_crecord.c b/src/lj_crecord.c
index 2ecd2867..ae528881 100644
--- a/src/lj_crecord.c
+++ b/src/lj_crecord.c
@@ -681,7 +681,7 @@ static TRef crec_call_args(jit_State *J, RecordFFData *rd,
   for (n = 0; J->base[n+1]; n++) {
     CType *d;
     do {
-      if (!ct->sib)
+      if (!ct->sib || n >= CCI_NARGS_MAX)
 	lj_trace_err(J, LJ_TRERR_NYICALL);
       ct = ctype_get(cts, ct->sib);
     } while (ctype_isattrib(ct->info));