From e72a7bf5c9c331f69e852d50e39edc471192c105 Mon Sep 17 00:00:00 2001
From: Ilyas Hilali <ilyas-hi@proton.me>
Date: Fri, 3 Jan 2025 17:50:52 +0100
Subject: [PATCH 1/2] Add initial support for pickletensor models to F5-TTS

* Tested with @RASPAUDIO french model available here : https://huggingface.co/RASPIAUDIO/F5-French-MixedSpeakers-reduced
---
 system/tts_engines/f5tts/model_engine.py | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/system/tts_engines/f5tts/model_engine.py b/system/tts_engines/f5tts/model_engine.py
index edb57b5e..a6f62e6e 100644
--- a/system/tts_engines/f5tts/model_engine.py
+++ b/system/tts_engines/f5tts/model_engine.py
@@ -400,9 +400,16 @@ def scan_models_folder(self):
             if model_dir.is_dir():
                 # First try to find model_*.safetensors files
                 model_files = list(model_dir.glob("model_*.safetensors"))
+                if not model_files:
+                # Try finding the pt model file as fallback
+                    # If no model_*.safetensors found, try finding a .pt model file
+                    model_files = list(model_dir.glob("model_*.pt"))
                 if not model_files:
                     # If no model_*.safetensors found, try any .safetensors file
                     model_files = list(model_dir.glob("*.safetensors"))
+                if not model_files:
+                    # If no model_*.safetensors found, try any .pt file
+                    model_files = list(model_dir.glob("*.pt"))
                     
                 vocab_file = model_dir / "vocab.txt"
                 vocos_dir = model_dir / "vocos"
@@ -508,9 +515,15 @@ async def api_manual_load_model(self, model_name):
             
             # Dynamically find the safetensors model file
             model_files = list(model_dir.glob("model_*.safetensors"))
+            if not model_files:
+                # Try finding the pt model file as fallback
+                model_files = list(model_dir.glob("model_*.pt"))
             if not model_files:
                 # Try finding any safetensors file as fallback
                 model_files = list(model_dir.glob("*.safetensors"))
+            if not model_files:
+                # Try finding any pt file as fallback
+                model_files = list(model_dir.glob("*.pt"))
                 
             if not model_files:
                 print(f"[{self.branding}ENG] \033[91mError\033[0m: No model's safetensors file was found in the F5-TTS models directory.")

From 0182e8fd01a6985f9d304dca11a9c6d837621b78 Mon Sep 17 00:00:00 2001
From: Ilyas Hilali <ilyas-hi@proton.me>
Date: Sun, 5 Jan 2025 12:13:07 +0100
Subject: [PATCH 2/2] Add a warning when a pickle file is loaded

---
 system/tts_engines/f5tts/model_engine.py | 31 ++++++++++++++++--------
 1 file changed, 21 insertions(+), 10 deletions(-)

diff --git a/system/tts_engines/f5tts/model_engine.py b/system/tts_engines/f5tts/model_engine.py
index a6f62e6e..04436f81 100644
--- a/system/tts_engines/f5tts/model_engine.py
+++ b/system/tts_engines/f5tts/model_engine.py
@@ -400,22 +400,22 @@ def scan_models_folder(self):
             if model_dir.is_dir():
                 # First try to find model_*.safetensors files
                 model_files = list(model_dir.glob("model_*.safetensors"))
-                if not model_files:
-                # Try finding the pt model file as fallback
-                    # If no model_*.safetensors found, try finding a .pt model file
-                    model_files = list(model_dir.glob("model_*.pt"))
                 if not model_files:
                     # If no model_*.safetensors found, try any .safetensors file
                     model_files = list(model_dir.glob("*.safetensors"))
+                if not model_files:
+                # Try finding a pt model file as fallback
+                    # If no model_*.safetensors found, try finding a .pt model file
+                    model_files = list(model_dir.glob("model_*.pt"))
                 if not model_files:
                     # If no model_*.safetensors found, try any .pt file
                     model_files = list(model_dir.glob("*.pt"))
-                    
+
                 vocab_file = model_dir / "vocab.txt"
                 vocos_dir = model_dir / "vocos"
                 vocos_config = vocos_dir / "config.yaml"
                 vocos_model = vocos_dir / "pytorch_model.bin"
-                
+
                 # Check if we have at least one model file and all other required files
                 if model_files and all(f.exists() for f in [vocab_file, vocos_config, vocos_model]):
                     model_name = model_dir.name
@@ -513,17 +513,28 @@ async def api_manual_load_model(self, model_name):
             vocab_path = model_dir / "vocab.txt"
             vocos_path = model_dir / "vocos"
             
-            # Dynamically find the safetensors model file
+            # Dynamically find the safetensors or pickletensor model file
+            model_is_pickle = False
             model_files = list(model_dir.glob("model_*.safetensors"))
-            if not model_files:
-                # Try finding the pt model file as fallback
-                model_files = list(model_dir.glob("model_*.pt"))
             if not model_files:
                 # Try finding any safetensors file as fallback
                 model_files = list(model_dir.glob("*.safetensors"))
+            if not model_files:
+                # Try finding the pt model file as fallback
+                model_files = list(model_dir.glob("model_*.pt"))
+                model_is_pickle = True
             if not model_files:
                 # Try finding any pt file as fallback
                 model_files = list(model_dir.glob("*.pt"))
+                model_is_pickle = True
+
+            if model_is_pickle:
+                print(
+                    f"[{self.branding}ENG] \033[91mWarning\033[0m: The models found in '{model_dir}' are in Pickle format (.pt). "
+                    f"This format poses security risks due to potential arbitrary code execution. "
+                    f"Please ensure the source of the models is trusted. We recommend using 'safetensors' format for enhanced security. "
+                    f"For more information, visit: https://huggingface.co/docs/hub/en/security-pickle"
+                )
                 
             if not model_files:
                 print(f"[{self.branding}ENG] \033[91mError\033[0m: No model's safetensors file was found in the F5-TTS models directory.")