fix: avoid memory leak when decoding invalid nested arrays#671

KowalskiThomas

What is this PR?

This PR fixes a memory leak that was detected (accidentally) through fuzzing.
The leak happens in some cases when trying to decode invalid data. When decoding an array, the unpacker uses a stack and pushes a new list to that stack for every nested array element. If it eventually reaches a point where the element to decode is problematic, it returns -2 which results in FormatError being raised, but unpack_clear lacks some memory freeing logic (only relevant in the problematic case -- the outermost list is freed but not the other ones) and the objects are lost forever.

The leak can directly be observed by running the following reproducer, which pushes several nested lists, and eventually one undefined format byte. It results in returning an error, without freeing the intermediate list objects. The logic is run under tracemalloc, with explicit GC calls to avoid transient still-alive objects that would be freed at some point. The deeper the nesting, the more objects are leaked.

import gc
import tracemalloc
import msgpack._cmsgpack as _c

KWARGS = {"raw": False, "strict_map_key": False, "max_array_len": 1 << 20, "max_map_len": 1 << 20}
N = 10000

for depth in range(1, 15):
    data = bytes([0x91] * depth + [0xC1])

    gc.collect()
    tracemalloc.start()
    s1 = tracemalloc.take_snapshot()

    for _ in range(N):
        try:
            _c.unpackb(data, **KWARGS)
        except:
            pass

    gc.collect()
    s2 = tracemalloc.take_snapshot()
    tracemalloc.stop()

    objs = sum(s.count_diff for s in s2.compare_to(s1, "lineno") if s.count_diff > 0)
    print(f"depth={depth}: {objs / N:.1f} leaked obj/call")

KowalskiThomas

Seems like Windows GHA runners are having a rough day...

methane

Seems like Windows GHA runners are having a rough day...

Don't mind. Its known problem. Python 3.14t on Windows arm64 is broken at the moment.
actions/setup-python#1307

Copilot

Pull request overview

Fixes a ref-leak in the C-backed unpacker when decoding invalid data that errors out after creating nested container objects, ensuring intermediate stack containers get freed instead of being lost.

Changes:

Update unpack_clear() to clear all live container objects on the unpacker stack (and any pending map_key reference when waiting for a map value).
Ensure Unpacker releases any retained unpacking stack objects during destruction by calling unpack_clear() in __dealloc__.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.

File	Description
msgpack/unpack_template.h	Frees all live stack frames (and pending map key refs) in `unpack_clear()` to prevent leaks on invalid-input error paths.
msgpack/_unpacker.pyx	Calls `unpack_clear()` during `Unpacker` deallocation to release any partially-decoded objects retained in the context.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

KowalskiThomas changed the title ~~fix: avoid memory leak~~ Apr 29, 2026

KowalskiThomas marked this pull request as ready for review April 29, 2026 09:09

KowalskiThomas force-pushed the kowalski/fix-avoid-memory-leak branch from 9f24141 to 59fe6b8 Compare April 29, 2026 09:23

methane requested a review from Copilot April 29, 2026 13:45

Copilot started reviewing on behalf of methane April 29, 2026 13:45 View session

Copilot AI reviewed Apr 29, 2026

View reviewed changes

fix: eliminate memory leak when parsing incorrect nested arrays

406360b

KowalskiThomas force-pushed the kowalski/fix-avoid-memory-leak branch from 59fe6b8 to ff1e3ee Compare April 29, 2026 19:29

test: add regression test

1b54a1e

KowalskiThomas force-pushed the kowalski/fix-avoid-memory-leak branch from ff1e3ee to 1b54a1e Compare April 29, 2026 19:30

methane reviewed Apr 30, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: avoid memory leak when decoding invalid nested arrays#671