# AI safety via debate
OAI article: https://openai.com/index/debate/

Paper: https://arxiv.org/pdf/1805.00899

Implementation by Alex Chen

Jul 2024

# Setup

In [13]:
import torch
import torchvision
import numpy as np
import matplotlib.pyplot as plt
import torch.nn as nn
import torch.nn.functional as F
import torch.optim as optim
import random
from torchvision.transforms import ToTensor
import math

# Training the Judge
The judge is a classifier trained to "predict MNIST digits from 6 non-black digits, sampled at random for each presentation when pretraining."

As per the paper, their original sparse classifier achieved 59.4% accuracy. They use a convolutional neural net.

In [2]:
n_epochs = 3
batch_size_train = 64
batch_size_test = 1000
learning_rate = 0.0005
momentum = 0.5
log_interval = 10

In [18]:
import torch
import torch.nn as nn
import torch.nn.functional as F
import torchvision
import torchvision.transforms as transforms
import numpy as np
from torchvision.transforms import ToTensor

class RandomPixelSelection(object):
    def __init__(self, num_pixels=6):
        self.num_pixels = num_pixels

    def __call__(self, img):
        img_np = np.array(img)
        flattened = img_np.flatten()
        non_black_indices = np.where(flattened > 0)[0]

        if len(non_black_indices) < self.num_pixels:
            selected_indices = non_black_indices
        else:
            selected_indices = np.random.choice(non_black_indices, self.num_pixels, replace=False)

        new_img = np.zeros_like(flattened)
        new_img[selected_indices] = flattened[selected_indices]
        new_img = new_img.reshape(img_np.shape)

        new_img = torch.tensor(new_img, dtype=torch.float32)
        new_img = (new_img - 0.1307) / 0.3081

        return new_img.unsqueeze(0)

transform = torchvision.transforms.Compose([
    RandomPixelSelection(num_pixels=6)
])

batch_size_train = 64
batch_size_test = 1000

train_loader = torch.utils.data.DataLoader(
    torchvision.datasets.MNIST('~/mnist_data/', train=True, download=True, transform=transform),
    batch_size=batch_size_train, shuffle=True)

test_loader = torch.utils.data.DataLoader(
    torchvision.datasets.MNIST('~/mnist_data/', train=False, download=True, transform=transform),
    batch_size=batch_size_test, shuffle=True)

class Judge(nn.Module):
    def __init__(self):
        super(Judge, self).__init__()
        self.conv1 = nn.Conv2d(1, 6, kernel_size=5)
        self.conv2 = nn.Conv2d(6, 12, kernel_size=5)
        self.fc1 = nn.Linear(12 * 20 * 20, 60)
        self.fc2 = nn.Linear(60, 30)
        self.fc3 = nn.Linear(30, 10)

    def forward(self, x):
        x = F.relu(self.conv1(x))
        x = F.relu(self.conv2(x))
        x = x.view(-1, 12 * 20 * 20)
        x = F.relu(self.fc1(x))
        x = F.relu(self.fc2(x))
        x = self.fc3(x)
        return F.log_softmax(x, dim=1)

device = torch.device("cuda" if torch.cuda.is_available() else "cpu")
model = Judge().to(device)
optimizer = torch.optim.SGD(model.parameters(), lr=learning_rate, momentum=momentum)
scheduler = torch.optim.lr_scheduler.StepLR(optimizer, step_size=1, gamma=0.7)

def train(model, device, train_loader, optimizer, epoch):
    model.train()
    for batch_idx, (data, target) in enumerate(train_loader):
        data, target = data.to(device), target.to(device)
        optimizer.zero_grad()
        output = model(data)
        loss = F.nll_loss(output, target)
        loss.backward()
        optimizer.step()
        if batch_idx % 100 == 0:
            print(f'Train Epoch: {epoch} [{batch_idx * len(data)}/{len(train_loader.dataset)} '
                  f'({100. * batch_idx / len(train_loader):.0f}%)]\tLoss: {loss.item():.6f}')

def test(model, device, test_loader):
    model.eval()
    test_loss = 0
    correct = 0
    with torch.no_grad():
        for data, target in test_loader:
            data, target = data.to(device), target.to(device)
            output = model(data)
            test_loss += F.nll_loss(output, target, reduction='sum').item()
            pred = output.argmax(dim=1, keepdim=True)
            correct += pred.eq(target.view_as(pred)).sum().item()

    test_loss /= len(test_loader.dataset)
    print(f'\nTest set: Average loss: {test_loss:.4f}, Accuracy: {correct}/{len(test_loader.dataset)} '
          f'({100. * correct / len(test_loader.dataset):.0f}%)\n')

n_epochs = 8
for epoch in range(1, n_epochs + 1):
    train(model, device, train_loader, optimizer, epoch)
    test(model, device, test_loader)
    scheduler.step()


Test set: Average loss: 1.4883, Accuracy: 4791/10000 (48%)


Test set: Average loss: 1.4312, Accuracy: 4952/10000 (50%)


Test set: Average loss: 1.4195, Accuracy: 4961/10000 (50%)


Test set: Average loss: 1.4124, Accuracy: 5007/10000 (50%)


Test set: Average loss: 1.3999, Accuracy: 5079/10000 (51%)


Test set: Average loss: 1.3739, Accuracy: 5142/10000 (51%)


Test set: Average loss: 1.3683, Accuracy: 5172/10000 (52%)


Test set: Average loss: 1.3696, Accuracy: 5124/10000 (51%)



In [None]:
example_data, example_target = next(iter(test_loader))
example_data, example_target = example_data.to(device), example_target.to(device)
model.eval()
with torch.no_grad():
    output = model(example_data)
    pred = output.argmax(dim=1, keepdim=True)
    for i in range(len(pred)):
        print(f'Predicted: {pred[i].item()}, Actual: {example_target[i].item()}')


In [40]:
class StandardMNIST(object):
    def __call__(self, img):
        img_np = np.array(img)
        new_img = torch.tensor(img_np, dtype=torch.float32)
        return new_img.unsqueeze(0)

standardTransform = torchvision.transforms.Compose([
    StandardMNIST(),
    transforms.Normalize((0.1307,), (0.3081,))
])

In [41]:
batch_size_test = 1

test_loader = torch.utils.data.DataLoader(
    torchvision.datasets.MNIST('~/mnist_data/', train=False, download=True, transform=standardTransform),
    batch_size=batch_size_test, shuffle=True)

In [44]:
example_image, example_label = next(iter(test_loader))
example_image_dim = example_image[0][0]
print(example_label)

tensor([6])


# The Agent

OAI paper uses pure Monte Carlo Tree Search with 10k rollouts per move

The selection criteria is the PUCT variant: the win rate + Upper bound

tree layers alternate between the truthful agent and the lying agent

each node can track the:
- parent
- children
- full game state up to that node, which also reveals which agent they are and what turn it is
- value; number of wins


the root of the tree is the empty state

first move is truthful agent

In [30]:
class Node():
    def __init__(self, parent=None, children={}, winRate=0, timesVisited=0, depth=0):
        self.parent = parent
        self.children = children
        self.timesVisited = timesVisited
        self.winRate = [] # [wins, total visits]
        self.depth = depth

In [105]:
class MCTS():
    def __init__(self, image, targetLabel, model):
        self.root = Node(parent=None)
        self.visitedLeaves = {} # may not need due to sparsity
        self.image = image
        self.targetLabel = targetLabel
        self.model = model
        self.non_black_pixels = []
        print(self.image.shape)
        for i in range(self.image.shape[0]):
            for j in range(self.image.shape[1]):
                if self.image[i, j] > -4.23e-01: # -0.42421... is what zeroes get mapped to
                    self.non_black_pixels.append((i, j))
        
        self.numValidActions = len(self.non_black_pixels)
    
    def calculateUtility(self, winRate, sumVisited, numVisits):
        return winRate + (1 / self.numValidActions) * (math.sqrt(1 + sumVisited)) / (1 + numVisits)

    def chooseNextNode(self, curNode, chosen):
        sumVisited = 0
        for child in curNode.children:
            sumVisited += child.timesVisited
        
        maxUtility = -1
        maxChildIndices = []

        for i in range(self.numValidActions):
            if i not in chosen:
                if curNode.children[i] is not None:
                    util = self.calculateUtility(curNode.children[i].winRate, sumVisited, curNode.children[i].timesVisited)
                else:
                    util = self.calculateUtility(0, sumVisited, curNode.children[i].timesVisited)

                if util > maxUtility:
                    maxChildIndices = [i]
                    maxUtility = util
                elif util == maxUtility:
                    maxChildIndices.append(i)
        
        maxChildIndex = random.choice(maxChildIndices)
        if curNode.children[maxChildIndex] is not None:
            curNode.children[maxChildIndex].timesVisited += 1
        else:
            curNode.children[maxChildIndex] = Node(parent=curNode, winRate=0, timesVisited=1)

        return curNode.children[maxChildIndex], maxChildIndex


    def backprop(self, leaf, truthWin):
        curNode = leaf
        while curNode.parent is not None:
            if truthWin and curNode.depth % 2 == 1:
                curNode.winRate += 1
            elif not truthWin and curNode.depth % 2 == 0:
                curNode.winRate += 1
            curNode = curNode.parent
    

    def judge(self, chosen):
        judge_image = torch.zeros((28, 28))
        chosen_pixels = [self.non_black_pixels[index] for index in chosen]
        for c in chosen_pixels:
            judge_image[c[0]][c[1]] = self.image[c[0]][c[1]]
        judge_image = judge_image.unsqueeze(0).unsqueeze(0) # this is a batch consisting of a single image lol
        output = self.model(judge_image)
        pred = output.argmax(dim=1, keepdim=True).item()
        return pred == self.targetLabel.item()
    
        
    def rollouts(self, numRollouts):
        for i in range(numRollouts):
            curNode = self.root
            chosen = []
            while curNode.depth != 6:
                nextNode, chosenIndex = self.chooseNextNode(curNode, chosen)
                chosen.append(chosenIndex)
                curNode = nextNode
            
            truthWin = self.judge(chosen)
            self.backprop(curNode, truthWin)

In [106]:
print(example_image_dim.shape)
a = MCTS(image=example_image_dim, targetLabel=example_label, model=model)
print(example_label)
chosen = [10,1,3,75,4,155]
print(a.judge(chosen))

torch.Size([28, 28])
torch.Size([28, 28])
tensor([6])
True
