gh-140067: Fix memory leak in sub-interpreter creation (#140111)

author Shamil <ashm.tech@proton.me>

Tue, 14 Oct 2025 14:42:17 +0000 (17:42 +0300)

committer GitHub <noreply@github.com>

Tue, 14 Oct 2025 14:42:17 +0000 (14:42 +0000)
author Shamil <ashm.tech@proton.me>
Tue, 14 Oct 2025 14:42:17 +0000 (17:42 +0300)
committer GitHub <noreply@github.com>
Tue, 14 Oct 2025 14:42:17 +0000 (14:42 +0000)
diff --git a/Include/internal/pycore_interp_structs.h b/Include/internal/pycore_interp_structs.h

index 2124e76514f1af0a771435fe0da49980c1c254aa..badc97808c6132a871b96bd5f601f67ee21a81e0 100644 (file)
--- a/Include/internal/pycore_interp_structs.h
+++ b/Include/internal/pycore_interp_structs.h
@@ -769,12 +769,6 @@ struct _is {
       * and should be placed at the beginning. */
      struct _ceval_state ceval;
  
-    /* This structure is carefully allocated so that it's correctly aligned
-     * to avoid undefined behaviors during LOAD and STORE. The '_malloced'
-     * field stores the allocated pointer address that will later be freed.
-     */
-    void *_malloced;
-
      PyInterpreterState *next;
  
      int64_t id;
diff --git a/Misc/NEWS.d/next/Core_and_Builtins/2025-10-14-17-07-37.gh-issue-140067.ID2gOm.rst b/Misc/NEWS.d/next/Core_and_Builtins/2025-10-14-17-07-37.gh-issue-140067.ID2gOm.rst

new file mode 100644 (file)

index 0000000..3c5a828
--- /dev/null
+++ b/Misc/NEWS.d/next/Core_and_Builtins/2025-10-14-17-07-37.gh-issue-140067.ID2gOm.rst
@@ -0,0 +1 @@
+Fix memory leak in sub-interpreter creation.
diff --git a/Python/pystate.c b/Python/pystate.c

index dbed609f29aa074fcf2506cf93f7dc17cd460c55..bf6e4e56e6df87319221bc76fd7d688e533089e1 100644 (file)
--- a/Python/pystate.c
+++ b/Python/pystate.c
@@ -457,16 +457,19 @@ _PyInterpreterState_Enable(_PyRuntimeState *runtime)
  static PyInterpreterState *
  alloc_interpreter(void)
  {
+    // Aligned allocation for PyInterpreterState.
+    // the first word of the memory block is used to store
+    // the original pointer to be used later to free the memory.
      size_t alignment = _Alignof(PyInterpreterState);
-    size_t allocsize = sizeof(PyInterpreterState) + alignment - 1;
+    size_t allocsize = sizeof(PyInterpreterState) + sizeof(void *) + alignment - 1;
      void *mem = PyMem_RawCalloc(1, allocsize);
      if (mem == NULL) {
          return NULL;
      }
-    PyInterpreterState *interp = _Py_ALIGN_UP(mem, alignment);
-    assert(_Py_IS_ALIGNED(interp, alignment));
-    interp->_malloced = mem;
-    return interp;
+    void *ptr = _Py_ALIGN_UP((char *)mem + sizeof(void *), alignment);
+    ((void **)ptr)[-1] = mem;
+    assert(_Py_IS_ALIGNED(ptr, alignment));
+    return ptr;
  }
  
  static void
@@ -481,7 +484,7 @@ free_interpreter(PyInterpreterState *interp)
              interp->obmalloc = NULL;
          }
          assert(_Py_IS_ALIGNED(interp, _Alignof(PyInterpreterState)));
-        PyMem_RawFree(interp->_malloced);
+        PyMem_RawFree(((void **)interp)[-1]);
      }
  }
author	Shamil <ashm.tech@proton.me>
	Tue, 14 Oct 2025 14:42:17 +0000 (17:42 +0300)
committer	GitHub <noreply@github.com>
	Tue, 14 Oct 2025 14:42:17 +0000 (14:42 +0000)
Include/internal/pycore_interp_structs.h		patch \| blob \| blame \| history
Misc/NEWS.d/next/Core_and_Builtins/2025-10-14-17-07-37.gh-issue-140067.ID2gOm.rst	[new file with mode: 0644]	patch \| blob
Python/pystate.c		patch \| blob \| blame \| history