JIT: Fix incorrect flag check

Fixes oss-fuzz #43538

Author: dstogov

ext/opcache/jit/zend_jit_x86.dasc

@@ -6062,7 +6062,7 @@ static int zend_jit_simple_assign(dasm_State    **Dst,
 				if (tmp_reg == ZREG_R0) {
 					|	IF_NOT_REFCOUNTED ah, >3
 				} else {
-					|	IF_NOT_FLAGS Rd(tmp_reg), IS_TYPE_REFCOUNTED, >3
+					|	IF_NOT_FLAGS Rd(tmp_reg), (IS_TYPE_REFCOUNTED << Z_TYPE_FLAGS_SHIFT), >3
 				}
 				|	GET_ZVAL_PTR Ra(tmp_reg), var_addr
 
@@ -6077,7 +6077,7 @@ static int zend_jit_simple_assign(dasm_State    **Dst,
 					if (tmp_reg == ZREG_R0) {
 						|	IF_NOT_REFCOUNTED ah, >2
 					} else {
-						|	IF_NOT_FLAGS Rd(tmp_reg), IS_TYPE_REFCOUNTED, >2
+						|	IF_NOT_FLAGS Rd(tmp_reg), (IS_TYPE_REFCOUNTED << Z_TYPE_FLAGS_SHIFT), >2
 					}
 					|	GET_ZVAL_PTR Ra(tmp_reg), var_addr
 					|	GC_ADDREF Ra(tmp_reg)

ext/opcache/tests/jit/assign_dim_009.phpt

@@ -0,0 +1,14 @@
+--TEST--
+JIT ASSIGN_DIM: 009
+--INI--
+opcache.enable=1
+opcache.enable_cli=1
+opcache.file_update_protection=0
+opcache.jit_buffer_size=1M
+--FILE--
+<?php
+$y[] = $r = &$G;
+?>
+DONE
+--EXPECT--
+DONE