Fix Bullet Physics: memory access out of bounds

[bofeng-song]

Re: #
#18613

Changelog

---

Continuous Integration

This pull request:

• needs automatic test cases check.

  Manual trigger with @cocos-robot run test cases afterward.

• does not change any runtime related code or build configuration

  If any reviewer thinks the CI checks are needed, please uncheck this option, then close and reopen the issue.

---

Compatibility Check

This pull request:

• changes public API, and have ensured backward compatibility with deprecated features.
• affects platform compatibility, e.g. system version, browser version, platform sdk version, platform toolchain, language version, hardware compatibility etc.
• affects file structure of the build package or build configuration which requires user project upgrade.
• introduces breaking changes, please list all changes, affected features and the scope of violation.

[dumganhar]

Why not use BulletCache here ?

[bofeng-song]

It`s a pointer in native, and its value will be changed later.

[bofeng-song]

Such as this interface: 
void DLL_EXPORT Transform_setRotation(int ptr, int q)
{
    btTransform *trans = (btTransform *)ptr;
    trans->setRotation(*(btQuaternion *)q);
}

[star-e]

It seems bt._safe_delete will also invalidate the pointer. I can't tell the difference between the two methods.

[bofeng-song]

BulletCache.instance.xx will be used multi times, and its value will be changed after calling c++ interface.
bt.Quat_new and bt.Transform_new ensure that values created multiple times remain consistent and are unaffected by external factors.

[github-actions]

Code Size Check Report

Wechat (WASM)	Before	After	Diff
2D Empty (legacy pipeline)	1005977 bytes	1005977 bytes	✅ 0 bytes
2D All (legacy pipeline)	2671042 bytes	2671042 bytes	✅ 0 bytes
2D All (new pipeline)	2760514 bytes	2760514 bytes	✅ 0 bytes
(2D + 3D) All	10016463 bytes	10016829 bytes	⚠️ +366 bytes

Web (WASM + ASMJS)	Before	After	Diff
(2D + 3D) All	16838084 bytes	16838450 bytes	⚠️ +366 bytes

Interface Check Report

This pull request does not change any public interfaces !

[star-e]

@cocos-robot run-test-cases-custom

[github-actions]

@bofeng-song, Please check the result of run test cases:

• Test Platform: PR-Test
• Editor Version: v3.8.7
• Task Result: FAIL
• Task URL: https://cctest.cocos.org/#/reportview/PR-TEST/ad73cad3-4083-4656-9184-e2eb244474a1/-1
• GitHub Action: https://github.com/cocos/cocos-engine/actions/runs/15321993657

Task Details

Platform	build	boot	runned	crashScene	FailScene
web-mobile	PASS	PASS	FAIL		particle-velocity,scroll-view-scroll-to-offset
ios	PASS	PASS	PASS
mac	PASS	PASS	PASS

[github-actions]

@bofeng-song, Please check the result of run test cases:

• Test Platform: PR-Test
• Editor Version: v3.8.7
• Task Result: PASS
• Task URL: https://cctest.cocos.org/#/reportview/PR-TEST/c3cecf81-acbd-4ffd-be6b-9cb337aa5c89/-1
• GitHub Action: https://github.com/cocos/cocos-engine/actions/runs/15321993657

Task Details