Skip to content

Use SafeUnpickler #2247

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 9 commits into from
Jul 22, 2025
Merged

Use SafeUnpickler #2247

Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
a263757
use SafeUnpickler
yiliu30 Jul 18, 2025
c42d135
Apply suggestion from @Copilot
yiliu30 Jul 19, 2025
a35e39e
add numpy
yiliu30 Jul 21, 2025
f43cb7c
Merge branch 'fix-tuning-his' of https://github.com/intel/neural-comp…
yiliu30 Jul 21, 2025
ba51a56
Merge branch 'master' into fix-tuning-his
yiliu30 Jul 21, 2025
66cd194
debug
yiliu30 Jul 21, 2025
d9a741b
fix numpy check
yiliu30 Jul 21, 2025
850fcc2
Merge branch 'fix-tuning-his' of https://github.com/intel/neural-comp…
yiliu30 Jul 21, 2025
7f46d0f
Update utility.py
yiliu30 Jul 21, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
72 changes: 66 additions & 6 deletions neural_compressor/utils/utility.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@
"""
import _thread
import ast
import builtins
import importlib
import logging
import os
Expand All @@ -33,6 +34,7 @@
import sys
import threading
import time
from collections import OrderedDict
from contextlib import contextmanager
from enum import Enum
from functools import wraps
Expand Down Expand Up @@ -390,16 +392,74 @@ def get_all_fp32_data(data):
return [float(i) for i in data.replace("[", " ").replace("]", " ").split(" ") if i.strip() and len(i) < 32]


def get_tuning_history(tuning_history_path):
def get_tuning_history(history_path):
"""Get tuning history.

Args:
tuning_history_path: The tuning history path, which need users to assign
history_path: The tuning history path, which need users to assign
"""
with open(tuning_history_path, "rb") as f:
strategy_object = pickle.load(f)
tuning_history = strategy_object.tuning_history
return tuning_history

class SafeUnpickler(pickle.Unpickler):
def find_class(self, module, name):
# Allowed built-in types
allowed_builtins = {
"dict",
"list",
"tuple",
"set",
"frozenset",
"str",
"bytes",
"int",
"float",
"complex",
"bool",
"NoneType",
"slice",
"type",
"object",
"bytearray",
"ellipsis",
"filter",
"map",
"range",
"reversed",
"zip",
}
if module == "builtins" and name in allowed_builtins:
return getattr(builtins, name)

# Allow collections.OrderedDict
if module == "collections" and name == "OrderedDict":
return OrderedDict

# Allow specific neural_compressor classes
if module.startswith("neural_compressor"):
# Validate class name exists in module
mod_path = module.replace(".__", " ") # Handle submodules
for part in mod_path.split():
try:
__import__(part)
except ImportError:
continue
mod = sys.modules.get(module)
if mod and hasattr(mod, name):
return getattr(mod, name)

# Allow all numpy classes
if module.startswith("numpy"):

mod = sys.modules.get(module)
if mod and hasattr(mod, name):
return getattr(mod, name)

# Block all other classes
raise pickle.UnpicklingError(f"Unsafe class: {module}.{name}")

with open(history_path, "rb") as f:
strategy_object = SafeUnpickler(f).load()
tuning_history = strategy_object.tuning_history
return tuning_history


def recover(fp32_model, tuning_history_path, num, **kwargs):
Expand Down
Loading