alibi-detect
alibi-detect copied to clipboard
SeldonIO
Change tensorflow model format to `SavedModel` to support sub-classed models
This PR changes the format we use to serialize TensorFlow models from the old HDF5 to the newer SavedModel format.
Motivation
As well as being the default (and recommended) TensorFlow model format, the SavedModel format has the advantage of supporting serialisation of sub-classed tensorflow models. That is, models constructed by subclassing tf.keras.Model, rather than by using tf.keras.Sequential, tf.keras.models.Model etc.
Limitations
- The new format improves the handling of custom tensorflow objects (such as layers and models) slightly. If these are not passed to
tf.keras.models.load_modelviacustom_objects(or registered with@tf.keras.utils.register_keras_serializable()) the model will be loaded as akeras.saving.saved_model.load.<model_class>*. This is a rough copy of the original serialized model, that behaves the same wrt inference, but cannot be cloned (which is done in a number of learned detectors such asClassifierDrift). To load the fully-functional model, all custom objects must be supplied at load time. - The HiddenOutput class does not work for subclassed models. Therefore, subclassed models cannot be saved/loaded when
layeris specified in the ModelConfig.
*in tensorflow>=2.9. In older versions, loading of the model will fail completely if the custom objects are not provided.
Main changes
- Changed
save_formatfrom'h5'to'tf'insave_modelandload_model, although stuck withh5for the legacy save/load functions. - Removed support for passing a
custom_objectsdictionary via config since support for this was very flaky. Custom objects in the dictionary could only realistically be specified as registered object strings ('@mymodeletc). However, this is confusing as tensorflow already has its own@tf.keras.utils.register_keras_serializable()decorator. -
load_detectornow allows arbitrarykwargs, which are passed totf.keras.models.load_model(ortorch.load). This is to be used to provide thecustom_objectsat load time (see example below). - Added subclassed models to CI.
Example
Example notebook demonstrating serialisation of a detector with a subclassed tensorflow model. Observe how the custom objects must be passed to load_detector in order to avoid the error KeyError: 'layers'.
Backwards compatibility
tf.keras.models.load_model automatically detects whether a given model path represents a h5 model or SavedModel. This means we should be backwards compatible, in that we can simply move to saving SavedModel's, but still support loading of legacy h5 models.
TODO's
- [x] Better document limitations of
SavedModelformat in docs. ~~- [ ] Add a more involved example of passing custom objects toload_detector.~~ - More challenging than first envisaged; I wanted to demonstrate on the amazon example, where a subclassedClassifierTFmodel is used, but saving here is not supported due to the use oftokenize_transformer. This is not related to subclassed models so would like to leave for a follow-up PR. - [ ] CHANGELOG.md - see https://github.com/SeldonIO/alibi-detect/pull/628#pullrequestreview-1272835501
Old notes etc
This notebook contains some experiments run to explore limitations wrt to the SavedModel format.
Codecov Report
Merging #628 (1dc7b61) into master (c0c5e64) will decrease coverage by
0.03%. The diff coverage is100.00%.
Additional details and impacted files
@@ Coverage Diff @@
## master #628 +/- ##
==========================================
- Coverage 80.35% 80.33% -0.03%
==========================================
Files 137 137
Lines 9300 9304 +4
==========================================
+ Hits 7473 7474 +1
- Misses 1827 1830 +3
| Flag | Coverage Δ | |
|---|---|---|
| macos-latest-3.9 | 76.81% <100.00%> (+0.01%) |
:arrow_up: |
| ubuntu-latest-3.10 | 80.22% <100.00%> (+<0.01%) |
:arrow_up: |
| ubuntu-latest-3.7 | 80.12% <100.00%> (+0.01%) |
:arrow_up: |
| ubuntu-latest-3.8 | 80.17% <100.00%> (+0.01%) |
:arrow_up: |
| ubuntu-latest-3.9 | ? |
|
| windows-latest-3.9 | 76.81% <100.00%> (-0.02%) |
:arrow_down: |
Flags with carried forward coverage won't be shown. Click here to find out more.
| Impacted Files | Coverage Δ | |
|---|---|---|
| alibi_detect/saving/schemas.py | 98.77% <ø> (-0.01%) |
:arrow_down: |
| alibi_detect/base.py | 85.45% <100.00%> (ø) |
|
| alibi_detect/saving/_pytorch/loading.py | 92.15% <100.00%> (+0.32%) |
:arrow_up: |
| alibi_detect/saving/_tensorflow/loading.py | 85.44% <100.00%> (+0.23%) |
:arrow_up: |
| alibi_detect/saving/_tensorflow/saving.py | 81.81% <100.00%> (-0.06%) |
:arrow_down: |
| alibi_detect/saving/loading.py | 93.83% <100.00%> (-0.03%) |
:arrow_down: |
| alibi_detect/datasets.py | 68.69% <0.00%> (-1.31%) |
:arrow_down: |
Check out this pull request on 
See visual diffs & provide feedback on Jupyter Notebooks.
Powered by ReviewNB
![review-notebook-app[bot] avatar](https://avatars.githubusercontent.com/in/15474?v=4 "Published by a pub.dev verified publisher"){kind=small}
The commits from f61af31 onwards contain three primary changes (based on discussion with @jklaise ):
- Subclassed tf models must have been built/called before they can be saved. It was decided that attempting to perform a dummy call prior to saving was risky. Instead, the
ValueErrorthat occurs inalibi_detect.saving._tensorflow.save_modelis caught and re-raised with a more informative error message. - For custom layers or subclassed models, various errors can occur during inference or cloning if custom objects are not properly provided at load time. The errors are often unclear, and surface from a variety of places e.g. in detector
predictmethods etc.alibi_detect.saving._tensorflow.load_modelruns some basic checks on the loaded model and raises a warning if any problems are detected. This allows problems to be discovered when the detector is first loaded, instead of having to wait until prediction time. - A more prominent warning about providing custom objects at load time is added to the docs.
Postponing this to v0.12.0 so that we can combine it with deprecation of legacy saving and #723 .