Hi all,

I decided to withdraw the proposal A: "AI models released under DFSG-compatible license without original training data or program" are not seen as DFSG-compliant.

Based on the overall discussions and feedbacks, we as a community is underprepared
to vote on this. Even if we vote, it is leading to a less convincing result. According to the constitution, I think it is completely fine to withdraw the proposal
and cancel it temporarily, and get back when we are ready for it.

However, if the other proposals suddenly get enough sponsors in the last minute,
the proposal A has to be there. So this is a "conditional" withdraw, and I'm expecting
the GR to be canceled.

Some of my comments:

* People holding different opinions have too short time to prepare (although I
already signaled everyone long time ago that I'll press the start button).
The lack of other options can make the result less convincing.

So if anybody is willing to propose option B,C,D..., next time, please continue
working on your proposal and let me know. I'll coordinate the time to press start
button to make sure none of you have to rush.
As usual, I'll track everything of my proposal A here publically:
https://salsa.debian.org/lumin/gr-ai-dfsg

* My initial thought about this GR is just to address the conceptual
interpretation. But the real implication of this conceptual GR is what makes the
audience unconfident on what to vote.

To do such analysis, it would take some time to do a rough archive scan to
figure out the packages that may be affected by this GR. Do you know any tool
that can help me scan the whole Debian archive (source) with the following
customized rules?

for each source package in debian archive {
for each file in source package {
if it is plain text file {
if is .json .xml etc and contains more than 1000 numbers {
ask for human check
} else {
continue
}
} else { (binary file)
if it typically/potentially contains numerical array, like .safetensors,
.pth, .ckpt, .npy, .npz {
ask for human check
} else if known-to-be-not-a-machine-learning-model, like .pdf {
skip
} else {
unknown binary, ask for human check
}
}
}

If we do not have such a tool, I'll do it myself. Once I get the file list,
I'll see whether I need volunteers to distribute the workload.

* Most people have an assumption that the "pre-trained models" are with good
faith and trustworthy. But is it? I'm going to create a simple demonstration
on how to implant backdoor in a neural network using my poorest hardware
(raspberry pi). Everything I need for this demonstration is already in main
section (both deep learning framework and dataset). I want to know
how people would fix the backdoored toy model by modifying the matrices and
vectors, when the matrices happens to be the "preferred form of
modification".

Debian is at a relatively bottom position in the supply chain. If Debian
ships a model in main and see it a "preferred form of modification", any
security or trustworthiness issue exposed afterwards may potentially nuke
a reverse supply chain.


I do not believe I can fill in those blanks within a short time. Maybe a couple of months are needed.

BTW, I cannot attent DebConf. If anybody wants to host some relevant discussion there, please let me know what I can do online.

-----BEGIN PGP SIGNATURE-----

iQJFBAABCgAvFiEEY4vHXsHlxYkGfjXeYmRes19oaooFAmgc5EQRHGx1bWluQGRl Ymlhbi5vcmcACgkQYmRes19oaooTphAAmEDnd78HIQr/gIrhuUfNO/5VA51Z0yYw UGL5NHnzPnDNQ4c1rK7uV4iJCneR4J6iuiJ/3pK3JQwAs9goWWW+hkUjPm16c7NE /2TatetOPCJK3oou1hEaezy8O1dApnQpCVPJeDvPbf1ViEcQny0JCJ8JXOiZ3PgW nxk5DUdsbZM0e8iVYBuTAqAbfy53bLaUVOgEm2F8hxsilfINwkp1rQOQRcDy1Xzl k1C4x6FkK58zlo4Uaz2bo5HAVlE31UtUwiImnguUWraQCflzmTW6Mt7QJUoZCl1N sogagXh4+YDaetP9JUGey2PLbLdagTQ9Xld5t2bF7ITwc55QEM5CSdkr7uzoCvkY m/YYZLPu7752Qk1XFKXeBPSwYdabN8TpXXvfe5DsBQJFpHnffsh+azBqHsiqhbfL /ZGJ4Mcpv9cgTi26hZYhzcCERkT7/LjksUwGl+RF6JNrafmP7Utsm1knafRw8i7X nPLDJBjCcJRE1U3AC3kWN2VfPXtrFMVrbElKU5WR5usLCDdU1azVqted3+/fx582 pcNzO7b5NFyTh2oqf1I7BLaSZAh5D9vsgaVyLlBz49z1B2Hn6uhO/xilrniEiapp 860Pj9cnUiq71kf3oyflB6HhFzo7aNORW90QB5gtkKKMy8ctWgLiKlxQC7rgP6yA
AWBYWDtADKU=
=IvGr
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

"M. Zhou" <[email protected]> writes:

I decided to withdraw the proposal A: "AI models released under DFSG-compatible license without original training data or program" are
not seen as DFSG-compliant.

Based on the overall discussions and feedbacks, we as a community is underprepared to vote on this. Even if we vote, it is leading to a less convincing result. According to the constitution, I think it is
completely fine to withdraw the proposal and cancel it temporarily, and
get back when we are ready for it.

Thank you for all your work on this, and please don't consider this any
sort of fault on your part. This happens a lot; people don't really engage until a GR is actually proposed, and even with the best of preparations, sometimes that surfaces a bunch of opinions that didn't show up before
then.

I think this is the right decision and I also hope it doesn't discourage
you from continuing to work on this. I don't think anyone is saying that
we shouldn't have this conversation and a vote, only that we (myself very
much included) are realizing that we hadn't actually thought this through
as thoroughly as we had thought.

--
Russ Allbery ([email protected]) <https://www.eyrie.org/~eagle/>

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi Russ,

On Thu, 2025-05-08 at 10:33 -0700, Russ Allbery wrote:

"M. Zhou" <[email protected]> writes:

Thank you for all your work on this, and please don't consider this any
sort of fault on your part. This happens a lot; people don't really engage until a GR is actually proposed, and even with the best of preparations, sometimes that surfaces a bunch of opinions that didn't show up before
then.

I think this is the right decision and I also hope it doesn't discourage
you from continuing to work on this. I don't think anyone is saying that
we shouldn't have this conversation and a vote, only that we (myself very much included) are realizing that we hadn't actually thought this through
as thoroughly as we had thought.

Thanks for the encouraging words! We are learning from this process and figuring out overlooked aspects. I'm quite optimistic when writing
the withdraw and there is not a single trace of "giving up" in my mind.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 5/8/25 13:48, M. Zhou wrote:

Thanks for the encouraging words! We are learning from this process and figuring out overlooked aspects. I'm quite optimistic when writing
the withdraw and there is not a single trace of "giving up" in my mind.

A quite interesting quote from FSF's website:

"With regards to the most debated topic in this area of free software,
the FSF's position is that a free (as in freedom) machine learning
application should include training data. Not including this in the
criteria would render it impossible to use, study, modify, and share
machine learning applications to the fullest extent possible."

Source: https://www.fsf.org/blogs/licensing/fsf-at-fosdem-2025

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Thu, 2025-05-08 at 15:58 -0500, G. Branden Robinson wrote:

I would advise you to stick to a conventional withdrawal of your ballot option.  It seems likely to me that with at least one other option
having already been withdrawn,[1] the GR will dissolve per §A.2.4.

To avoid ambiguity here, I confirm that I'm sticking to the standard
withdraw process defined in the constitution.

-----BEGIN PGP SIGNATURE-----

iQJFBAABCgAvFiEEY4vHXsHlxYkGfjXeYmRes19oaooFAmgh8XYRHGx1bWluQGRl Ymlhbi5vcmcACgkQYmRes19oaooPNw//TAQ1kZHlDFeggs2ClqYHdm0jIdANyzh7 BjtR1fM5avxx3wV0Fz1C/fv2xcBVD/x+KcHWKdzrE8A6XoOei/mLxIU3dARKcZ62 TWYvlrYQ/NXzpaP6szG+sIy0dSADs01TR9EeCMRvr4FX+okEDkkiuD1adsDWb1FL 8L6WE4lObJx34Mu3t5sjCcqRjog8qPke6HYsNs/QSpOaHrLuglNqOGAzKFGJAH2j SxIVSegOONkv5RTQz8A4BDEJgm/fXvZVaoaWBEqTC/6gTkfpnEkZ22BbSMZxw0k5 tv4y3CMEffXpUQzFdVtHWZowF6mPjLZ6bVQQYkrCsr52+NIBkWn9eDLjv4M54f6A 2+oxf/DYBwYIEyfwmkS2gNe1syEHAsQNPKU0fZznTHQPiHhR92NXnurVfhySeX+e BQFfCpi/GmH/OvzNUb2n3ibIMV4btIXzfh1fStbZL6cNDypCkWRouukLrROpEjlt vnKEZaDVAhEFBd+jhAbrb72pSkA1eZYAOj+nz6wo+4jXgihmvdW1Cw+saNoOGxrx eGeWfmfh3gcR3IuQcC0IUw5u5xOxNzL7P4+aHsH+PQZ3Yf9hkJmCKLI2dHWNuu73 gUAjI1Er2df6eso7L+BJp2cJaEXlE0nmLKgXO2agKqkWTP9V5hGquBG8ywRly4EL
+FDWkQhtG7w=
=+bPD
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Thu, May 08, 2025 at 01:05:08PM -0400, M. Zhou wrote:

Hi all,

I decided to withdraw the proposal A: "AI models released under DFSG-compatible
license without original training data or program" are not seen as DFSG-compliant.

Based on the overall discussions and feedbacks, we as a community is underprepared
to vote on this.

Do you intend to make a new proposal?


Kurt

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Sure but that is not going to happen soon.

We need time to prepare. And the time for the next round is TBD.

On 5/27/25 1:17 PM, Kurt Roeckx wrote:

On Thu, May 08, 2025 at 01:05:08PM -0400, M. Zhou wrote:

Hi all,

I decided to withdraw the proposal A: "AI models released under DFSG-compatible
license without original training data or program" are not seen as DFSG-compliant.

Based on the overall discussions and feedbacks, we as a community is underprepared
to vote on this.

Do you intend to make a new proposal?

Kurt

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)