Hugging Face's logo

Spaces:
ar07xd
/
deepshield
Sleeping

App Files Community
deepshield / services /image_service.py
ar07xd's picture
ar07xd
Sync from GitHub via hub-sync
72ccda8 verified
raw
history blame contribute delete
24 kB
from __future__ import annotations
import io
from dataclasses import dataclass, field
from typing import List, Optional, Tuple
import cv2
import numpy as np
import torch
from loguru import logger
from PIL import Image
from config import settings
from models.model_loader import get_model_loader
from schemas.common import ArtifactIndicator, ExifSummary, VLMBreakdown
from services.general_image_service import (
 classify_general_image,
 fuse_no_face_evidence,
 _exif_fake_probability,
 _forensic_fake_probability,
 _vlm_fake_probability,
)
@dataclass
class ImageClassification:
 label: str
 confidence: float
 all_scores: dict[str, float]
 models_used: List[str] = field(default_factory=list)
 ensemble_method: Optional[str] = None
 calibrator_applied: bool = False
 no_face_analysis: Optional[dict] = None
 # Phase A: unified evidence fusion breakdown (components + weights). When set,
 # downstream callers must NOT re-apply EXIF/forensic adjustments — they're
 # already in `confidence`. Populated for both face-present and no-face paths.
 evidence_fusion: Optional[dict] = None
 gating_applied: Optional[str] = None
def load_image_from_bytes(data: bytes) -> Image.Image:
 img = Image.open(io.BytesIO(data))
 if img.mode != "RGB":
 img = img.convert("RGB")
 return img
def _classify_vit(pil_img: Image.Image) -> Tuple[float, str, dict[str, float]]:
 """Run the ViT deepfake classifier. Returns (fake_prob, top_label, all_scores)."""
 loader = get_model_loader()
 model, processor = loader.load_image_model()
inputs = processor(images=pil_img, return_tensors="pt")
 inputs = {k: v.to(settings.DEVICE) for k, v in inputs.items()}
with torch.no_grad():
 outputs = model(**inputs)
 logits = outputs.logits
 probs = torch.softmax(logits, dim=-1)[0]
id2label: dict[int, str] = getattr(model.config, "id2label", {})
 all_scores = {id2label.get(i, str(i)): float(p.item()) for i, p in enumerate(probs)}
 top_idx = int(torch.argmax(probs).item())
 top_label = id2label.get(top_idx, str(top_idx))
# Identify the fake probability — pick the highest score from fake-labelled classes.
 fake_tokens = ("fake", "deepfake", "manipulated", "ai", "generated", "synthetic")
 fake_prob = max(
 (float(p) for lbl, p in all_scores.items() if any(t in lbl.lower() for t in fake_tokens)),
 default=float(probs[top_idx].item()),
 )
 return fake_prob, top_label, all_scores
def _crop_face_for_face_model(pil_img: Image.Image) -> Image.Image:
 """Best-effort face crop for FFPP-style classifiers trained on face crops."""
 rgb = np.asarray(pil_img.convert("RGB"))
 h, w = rgb.shape[:2]
def crop(x0: int, y0: int, x1: int, y1: int, margin: float = 0.24) -> Image.Image:
 bw = max(1, x1 - x0)
 bh = max(1, y1 - y0)
 pad = int(max(bw, bh) * margin)
 x0c = max(0, x0 - pad)
 y0c = max(0, y0 - pad)
 x1c = min(w, x1 + pad)
 y1c = min(h, y1 + pad)
 if x1c <= x0c + 8 or y1c <= y0c + 8:
 return pil_img
 return Image.fromarray(rgb[y0c:y1c, x0c:x1c])
try:
 from models.model_loader import get_model_loader
detector = get_model_loader().load_face_detector()
 result = detector.process(rgb) if detector is not None else None
 if result is not None and getattr(result, "multi_face_landmarks", None):
 landmarks = result.multi_face_landmarks[0].landmark
 xs = [lm.x * w for lm in landmarks]
 ys = [lm.y * h for lm in landmarks]
 return crop(int(min(xs)), int(min(ys)), int(max(xs)), int(max(ys)))
 except Exception as exc: # noqa: BLE001
 logger.debug(f"FFPP MediaPipe face crop failed: {exc}")
try:
 gray = cv2.cvtColor(rgb, cv2.COLOR_RGB2GRAY)
 cascade_path = cv2.data.haarcascades + "haarcascade_frontalface_default.xml"
 cascade = cv2.CascadeClassifier(cascade_path)
 faces = cascade.detectMultiScale(gray, scaleFactor=1.08, minNeighbors=4, minSize=(32, 32))
 if len(faces) > 0:
 x, y, fw, fh = max(faces, key=lambda box: box[2] * box[3])
 return crop(int(x), int(y), int(x + fw), int(y + fh))
 except Exception as exc: # noqa: BLE001
 logger.debug(f"FFPP OpenCV face crop failed: {exc}")
return pil_img
def _classify_densenet(pil_img: Image.Image) -> Optional[Tuple[float, dict[str, float]]]:
 """Run DenseNet121 face-GAN classifier. Returns (fake_prob, all_scores) or None."""
 loader = get_model_loader()
 result = loader.load_densenet()
 if result is None:
 return None
 model, meta = result
 try:
 from services.densenet_service import detect_image
 out = detect_image(pil_img, model, meta, device=settings.DEVICE)
 scores = {
 "densenet_real": out["score_real"],
 "densenet_fake": out["fake_prob"],
 }
 return out["fake_prob"], scores
 except Exception as e:
 logger.warning(f"DenseNet inference failed: {e}")
 return None
def _classify_ffpp(pil_img: Image.Image) -> Optional[Tuple[float, dict[str, float]]]:
 """Run the FFPP-fine-tuned ViT (Phase 11.3). Returns (fake_prob, all_scores) or None."""
 loader = get_model_loader()
 loaded = loader.load_ffpp_model()
 if loaded is None:
 return None
 model, processor = loaded
face_img = _crop_face_for_face_model(pil_img)
 inputs = processor(images=face_img, return_tensors="pt")
 inputs = {k: v.to(settings.DEVICE) for k, v in inputs.items()}
with torch.no_grad():
 outputs = model(**inputs)
 probs = torch.softmax(outputs.logits, dim=-1)[0]
id2label: dict[int, str] = getattr(model.config, "id2label", {0: "fake", 1: "real"})
 all_scores = {id2label.get(i, str(i)): float(p.item()) for i, p in enumerate(probs)}
 fake_prob = next(
 (float(v) for k, v in all_scores.items() if k.lower() == "fake"),
 float(probs[0].item()),
 )
 return fake_prob, all_scores
def _has_face_for_routing(pil_img: Image.Image) -> bool:
 rgb = np.asarray(pil_img.convert("RGB"))
 try:
 detector = get_model_loader().load_face_detector()
 result = detector.process(rgb) if detector is not None else None
 if result is not None and getattr(result, "multi_face_landmarks", None):
 return True
 except Exception as exc: # noqa: BLE001
 logger.debug(f"MediaPipe face route check failed: {exc}")
try:
 gray = cv2.cvtColor(rgb, cv2.COLOR_RGB2GRAY)
 cascade_path = cv2.data.haarcascades + "haarcascade_frontalface_default.xml"
 cascade = cv2.CascadeClassifier(cascade_path)
 faces = cascade.detectMultiScale(gray, scaleFactor=1.08, minNeighbors=4, minSize=(32, 32))
 return len(faces) > 0
 except Exception as exc: # noqa: BLE001
 logger.debug(f"OpenCV face route check failed: {exc}")
 return False
def _classify_no_face(
 pil_img: Image.Image,
 *,
 artifact_indicators: Optional[list[ArtifactIndicator]] = None,
 exif: ExifSummary | None = None,
 vlm_breakdown: VLMBreakdown | None = None,
 general=None,
) -> ImageClassification:
 if general is None:
 general = classify_general_image(pil_img)
 fused = fuse_no_face_evidence(
 general_fake_prob=general.fake_probability if general else None,
 artifacts=artifact_indicators or [],
 exif=exif,
 vlm=vlm_breakdown,
 )
 scores = {
 f"no_face_{name}": score
 for name, score in fused.components.items()
 }
 scores.update({
 f"no_face_weight_{name}": weight
 for name, weight in fused.weights.items()
 })
 if general is not None:
 scores.update({f"general_{k}": v for k, v in general.all_scores.items()})
analysis = {
 "method": fused.method,
 "components": fused.components,
 "weights": fused.weights,
 "general_model": general.model_used if general else None,
 "general_label": general.label if general else "unavailable",
 "general_unavailable": general is None,
 }
 models_used = [general.model_used if general else "no-face-forensic-fusion"]
# Apply hard gating (Phase A4) on the no-face path too.
 is_video_frame = _looks_like_video_frame(pil_img)
 gated_prob, gating_reason = _apply_hard_gating(
 fake_prob=fused.fake_probability,
 general_fake_prob=general.fake_probability if general else None,
 artifacts=artifact_indicators or [],
 )
 gated_prob, synthetic_reason = _apply_synthetic_still_overrides(
 fake_prob=gated_prob,
 general_fake_prob=general.fake_probability if general else None,
 is_video_frame=is_video_frame,
 )
 final_gating_reason = synthetic_reason or gating_reason
 final_label = "Fake" if gated_prob >= 0.5 else fused.label
return ImageClassification(
 label=final_label,
 confidence=gated_prob,
 all_scores=scores,
 models_used=models_used,
 ensemble_method=fused.method,
 no_face_analysis=analysis,
 evidence_fusion={
 "components": fused.components,
 "weights": fused.weights,
 "method": fused.method,
 "pre_gating": fused.fake_probability,
 "is_video_frame": is_video_frame,
 },
 gating_applied=final_gating_reason,
 )
def _looks_like_video_frame(pil_img: Image.Image) -> bool:
 """Return True when the image is very likely a frame extracted from video.
 Requires BOTH a low resolution (≤720px long side, typical for extracted
 deepfake frames) AND a tight aspect-ratio match (±0.03) to a standard video
 ratio. 1:1 and 4:3 are excluded because they overlap heavily with common
 photo formats and cause too many false positives.
 """
 w, h = pil_img.size
 if max(w, h) > 720:
 return False
 aspect = w / h
 # Exclude 1:1 and 4:3 — too common in photos to be a reliable video signal
 video_ratios = [16 / 9, 9 / 16, 3 / 4]
 return any(abs(aspect - r) < 0.03 for r in video_ratios)
def _has_gan_artifact(artifacts: list[ArtifactIndicator]) -> bool:
 return any(
 a.type == "gan_artifact" and a.confidence >= settings.GAN_ARTIFACT_GATING_THRESHOLD
 for a in artifacts
 )
def _apply_hard_gating(
 *,
 fake_prob: float,
 general_fake_prob: Optional[float],
 artifacts: list[ArtifactIndicator],
) -> Tuple[float, Optional[str]]:
 """Phase A4: when strong synthetic evidence is present, never let the result
 land in "Likely Real" or above. Returns (possibly-floored prob, reason)."""
 floor = settings.GATING_FAKE_FLOOR
 if general_fake_prob is not None and general_fake_prob >= settings.GENERAL_FAKE_GATING_THRESHOLD:
 if fake_prob < floor:
 return floor, f"general_detector_high({general_fake_prob:.2f})"
 if _has_gan_artifact(artifacts):
 if fake_prob < floor:
 return floor, "gan_artifact_high"
 return fake_prob, None
def _apply_synthetic_still_overrides(
 *,
 fake_prob: float,
 general_fake_prob: Optional[float],
 is_video_frame: bool,
) -> Tuple[float, Optional[str]]:
 """Keep still-image AI-generation evidence from being diluted by FFPP/DFDC.
 FaceForensics/DFDC models are trained for manipulated real/video faces. They
 are useful evidence, but they should not veto a high-confidence whole-image
 AI detector on generated still portraits.
 """
 if is_video_frame or general_fake_prob is None:
 return fake_prob, None
general = max(0.0, min(1.0, float(general_fake_prob)))
 if general >= settings.SYNTHETIC_STILL_VERY_HIGH_THRESHOLD:
 adjusted = max(fake_prob, settings.SYNTHETIC_STILL_VERY_HIGH_FLOOR)
 if adjusted != fake_prob:
 return adjusted, f"general_detector_very_high({general:.2f})"
 elif general >= settings.SYNTHETIC_STILL_HIGH_THRESHOLD:
 adjusted = max(fake_prob, settings.SYNTHETIC_STILL_HIGH_FLOOR)
 if adjusted != fake_prob:
 return adjusted, f"general_detector_high({general:.2f})"
return fake_prob, None
def classify_image(
 pil_img: Image.Image,
 *,
 artifact_indicators: Optional[list[ArtifactIndicator]] = None,
 exif: ExifSummary | None = None,
 vlm_breakdown: VLMBreakdown | None = None,
) -> ImageClassification:
 """Run deepfake classification. Weighted ensemble across:
 - FFPP-fine-tuned ViT (Phase 11.3, face-trained) — highest weight when present
 - EfficientNetAutoAttB4 (face-gated DFDC model)
 - Generic ViT (prithivMLmods)
 Falls back gracefully when individual models are unavailable.
 """
 face_present_for_route = _has_face_for_routing(pil_img)
# Phase A1: always run the general AI-image detector, regardless of face
 # routing. This is the only model in the stack actually trained on
 # diffusion/GAN whole-image artifacts.
 general = classify_general_image(pil_img)
 general_fake_prob: Optional[float] = general.fake_probability if general else None
if not face_present_for_route and settings.ENSEMBLE_MODE:
 result = _classify_no_face(
 pil_img,
 artifact_indicators=artifact_indicators,
 exif=exif,
 vlm_breakdown=vlm_breakdown,
 general=general,
 )
 logger.info(
 f"Image classify ({result.ensemble_method}) -> {result.label} "
 f"@ {result.confidence:.3f}"
 )
 return result
vit_fake_prob, vit_label, vit_scores = _classify_vit(pil_img)
 models_used = [settings.IMAGE_MODEL_ID]
 scores_out: dict[str, float] = {f"vit_{k}": v for k, v in vit_scores.items()}
 if general is not None:
 scores_out.update({f"general_{k}": v for k, v in general.all_scores.items()})
 models_used.append(general.model_used)
# FFPP inference (may be None if disabled / checkpoint missing).
 ffpp_fake_prob: Optional[float] = None
 ffpp_res = _classify_ffpp(pil_img) if settings.FFPP_ENABLED and face_present_for_route else None
 if ffpp_res is not None:
 ffpp_fake_prob, ffpp_scores = ffpp_res
 models_used.append("ffpp-vit-local")
 scores_out.update({f"ffpp_{k}": v for k, v in ffpp_scores.items()})
# DenseNet121 inference (face-GAN specialist — face-present path only).
 densenet_fake_prob: Optional[float] = None
 if settings.DENSENET_ENABLED and face_present_for_route:
 dn_res = _classify_densenet(pil_img)
 if dn_res is not None:
 densenet_fake_prob, dn_scores = dn_res
 models_used.append("densenet121-faces")
 scores_out.update(dn_scores)
if not settings.ENSEMBLE_MODE:
 if ffpp_fake_prob is not None:
 combined = 0.4 * vit_fake_prob + 0.6 * ffpp_fake_prob
 method = "ffpp_vit_blend"
 else:
 combined = vit_fake_prob
 method = None
 label = "Fake" if combined >= 0.5 else "Real"
 logger.info(f"Image classify (ensemble-off) -> {label} @ {combined:.3f}")
 return ImageClassification(
 label=label, confidence=combined, all_scores=scores_out,
 models_used=models_used, ensemble_method=method,
 )
# EfficientNet inference (face-gated).
 loader = get_model_loader()
 eff_detector = loader.load_efficientnet()
 eff_fake_prob: Optional[float] = None
 face_present = face_present_for_route
 if eff_detector is not None:
 eff_result = eff_detector.detect_image(pil_img)
 if not eff_result.get("error") and eff_result.get("score") is not None:
 eff_fake_prob = float(eff_result["score"])
 face_present = True
 models_used.append(eff_result["model"])
 scores_out["efficientnet_fake"] = eff_fake_prob
 scores_out["efficientnet_real"] = 1.0 - eff_fake_prob
 scores_out["efficientnet_calibrator_applied"] = 1.0 if eff_result.get("calibrator_applied") else 0.0
# ── Face-stack composite (DenseNet + FFPP + ViT + EffNet) ──────────────
 # Video-frame path shifts weight to FFPP/EffNet; still-image path gives
 # DenseNet the lead (trained specifically on GAN still-face portraits).
 is_video_frame = _looks_like_video_frame(pil_img)
def _weighted(probs: dict[str, float]) -> float:
 total = sum(probs.values())
 return sum(v * w for v, w in probs.items()) / total if total else 0.0
available: dict[str, float] = {}
 if densenet_fake_prob is not None:
 w_dn = settings.DENSENET_VIDEO_WEIGHT if is_video_frame else settings.DENSENET_WEIGHT_FACE
 available["densenet"] = w_dn
 if ffpp_fake_prob is not None:
 w_ffpp = settings.VIDEO_FFPP_WEIGHT_FACE if is_video_frame else settings.FFPP_WEIGHT_FACE
 available["ffpp"] = w_ffpp
 if eff_fake_prob is not None and face_present:
 w_eff = settings.VIDEO_EFFNET_WEIGHT_FACE if is_video_frame else settings.EFFNET_WEIGHT_FACE
 available["eff"] = w_eff
 # ViT always present
 w_vit = settings.VIDEO_VIT_WEIGHT_FACE if is_video_frame else settings.VIT_WEIGHT_FACE
 available["vit"] = w_vit
prob_map: dict[str, float] = {}
 if "densenet" in available:
 prob_map["densenet"] = densenet_fake_prob * available["densenet"]
 if "ffpp" in available:
 prob_map["ffpp"] = ffpp_fake_prob * available["ffpp"]
 if "eff" in available:
 prob_map["eff"] = eff_fake_prob * available["eff"]
 prob_map["vit"] = vit_fake_prob * available["vit"]
total_w = sum(available.values())
 face_stack_prob = sum(prob_map.values()) / total_w if total_w else vit_fake_prob
active = [k for k in ["densenet", "ffpp", "eff", "vit"] if k in available]
 face_stack_method = "_".join(active)
# ── Phase A2/A3: unified evidence fusion (face-stack + general + forensics + EXIF + VLM) ──
 w_face_stack = settings.VIDEO_FRAME_FACE_STACK_WEIGHT if is_video_frame else settings.FACE_STACK_WEIGHT_FACE
 w_general = settings.VIDEO_FRAME_GENERAL_WEIGHT if is_video_frame else settings.GENERAL_WEIGHT_FACE
 w_forensics = settings.VIDEO_FRAME_FORENSICS_WEIGHT if is_video_frame else settings.FORENSICS_WEIGHT_FACE
 w_exif = settings.VIDEO_FRAME_EXIF_WEIGHT if is_video_frame else settings.EXIF_WEIGHT_FACE
if is_video_frame:
 logger.info("Video-frame detected — using face-stack-dominant weights")
components: dict[str, float] = {"face_stack": face_stack_prob}
 weights: dict[str, float] = {"face_stack": w_face_stack}
if general_fake_prob is not None:
 components["general"] = max(0.0, min(1.0, float(general_fake_prob)))
 weights["general"] = w_general
artifacts_list = artifact_indicators or []
 if artifacts_list:
 components["forensics"] = _forensic_fake_probability(artifacts_list, is_video_frame=is_video_frame)
 weights["forensics"] = w_forensics
if exif is not None and exif.trust_adjustment != 0:
 components["exif"] = _exif_fake_probability(exif)
 weights["exif"] = w_exif
vlm_prob = _vlm_fake_probability(vlm_breakdown)
 if vlm_prob is not None:
 components["vlm"] = vlm_prob
 weights["vlm"] = settings.VLM_WEIGHT_FACE
total_w = sum(weights.values())
 pre_gating_prob = (
 sum(components[k] * weights[k] for k in weights) / total_w if total_w > 0 else face_stack_prob
 )
 pre_gating_prob = max(0.0, min(1.0, pre_gating_prob))
# Phase A4: hard gating
 ensemble_prob, gating_reason = _apply_hard_gating(
 fake_prob=pre_gating_prob,
 general_fake_prob=general_fake_prob,
 artifacts=artifacts_list,
 )
 ensemble_prob, synthetic_reason = _apply_synthetic_still_overrides(
 fake_prob=ensemble_prob,
 general_fake_prob=general_fake_prob,
 is_video_frame=is_video_frame,
 )
 final_gating_reason = synthetic_reason or gating_reason
method = f"unified_evidence_{face_stack_method}"
 label = "Fake" if ensemble_prob >= 0.5 else "Real"
 logger.info(
 f"Image classify ({method}) -> {label} | "
 f"face_stack={face_stack_prob:.3f} general={general_fake_prob if general_fake_prob is not None else 'n/a'} "
 f"forensics={components.get('forensics', 'n/a')} exif={components.get('exif', 'n/a')} "
 f"vlm={components.get('vlm', 'n/a')} -> {pre_gating_prob:.3f} "
 f"(gated:{final_gating_reason or 'none'} -> {ensemble_prob:.3f})"
 )
 return ImageClassification(
 label=label,
 confidence=ensemble_prob,
 all_scores=scores_out,
 models_used=models_used,
 ensemble_method=method,
 calibrator_applied=bool(scores_out.get("efficientnet_calibrator_applied", 0.0)),
 evidence_fusion={
 "components": components,
 "weights": weights,
 "method": method,
 "face_stack_method": face_stack_method,
 "pre_gating": pre_gating_prob,
 "is_video_frame": is_video_frame,
 },
 gating_applied=final_gating_reason,
 )
def apply_vlm_to_classification(
 clf: ImageClassification,
 vlm_breakdown: "VLMBreakdown",
) -> ImageClassification:
 """Fold VLM evidence into an already-computed ImageClassification.
 Recomputes only the fusion math — no model inference is repeated.
 Returns clf unchanged if evidence_fusion is absent or VLM yields no signal.
 """
 if clf.evidence_fusion is None:
 return clf
vlm_prob = _vlm_fake_probability(vlm_breakdown)
 if vlm_prob is None:
 return clf
components = dict(clf.evidence_fusion["components"])
 weights = dict(clf.evidence_fusion["weights"])
 is_video_frame = clf.evidence_fusion.get("is_video_frame", False)
components["vlm"] = vlm_prob
 weights["vlm"] = settings.VLM_WEIGHT_FACE
total_w = sum(weights.values())
 pre_gating_prob = (
 sum(components[k] * weights[k] for k in weights) / total_w if total_w else 0.0
 )
 pre_gating_prob = max(0.0, min(1.0, pre_gating_prob))
general_fake_prob = components.get("general")
 ensemble_prob, gating_reason = _apply_hard_gating(
 fake_prob=pre_gating_prob,
 general_fake_prob=general_fake_prob,
 artifacts=[],
 )
 ensemble_prob, synthetic_reason = _apply_synthetic_still_overrides(
 fake_prob=ensemble_prob,
 general_fake_prob=general_fake_prob,
 is_video_frame=is_video_frame,
 )
# Preserve artifact-based gating floor from the original classification
 if clf.gating_applied and "gan_artifact" in clf.gating_applied:
 ensemble_prob = max(ensemble_prob, settings.GATING_FAKE_FLOOR)
final_gating_reason = synthetic_reason or gating_reason or clf.gating_applied
 label = "Fake" if ensemble_prob >= 0.5 else "Real"
logger.info(
 f"VLM fusion applied: vlm_prob={vlm_prob:.3f} "
 f"pre_gating={pre_gating_prob:.3f} -> {ensemble_prob:.3f} ({label})"
 )
return ImageClassification(
 label=label,
 confidence=ensemble_prob,
 all_scores={**clf.all_scores, "vlm_fake_prob": vlm_prob},
 models_used=clf.models_used,
 ensemble_method=clf.ensemble_method,
 calibrator_applied=clf.calibrator_applied,
 no_face_analysis=clf.no_face_analysis,
 evidence_fusion={
 **clf.evidence_fusion,
 "components": components,
 "weights": weights,
 "pre_gating": pre_gating_prob,
 },
 gating_applied=final_gating_reason,
 )
def preprocess_and_classify(raw_bytes: bytes) -> Tuple[Image.Image, ImageClassification]:
 """Convenience: decode bytes → PIL → classify. Returns the PIL image too so
 downstream steps (heatmap, artifact scan) can reuse it.
 """
 pil = load_image_from_bytes(raw_bytes)
 result = classify_image(pil)
 return pil, result