Make frpc optional and only download when share=True

[UESENPAI]

• [ V] I have searched to see if a similar issue already exists.

Is your feature request related to a problem? Please describe.
Gradio installs and validates frpc (Fast Reverse Proxy Client) even if the user never calls share=True.
This is a security concern because frpc is widely flagged by antivirus as HackTool or Riskware, and attackers actively use FRP to create backdoors.
Requiring every user to keep a tunneling binary installed increases the attack surface of ML servers and encourages users to weaken their security posture (e.g. whitelisting the binary).

Describe the solution you'd like
Make frpc completely optional:

Remove it from the default requirements and installation validation.

Only check/download frpc when share=True is explicitly requested, and only at that moment.
This would keep Gradio “secure by default,” while still allowing users who need public sharing to install and use FRPC.

Additional context
Many GitHub issues suggest “whitelisting frpc” when it is blocked, but this is not a good security practice — it normalizes bypassing protections instead of minimizing risk.
By making frpc opt-in, Gradio can stay compatible with strict security environments while still offering the share feature for those who explicitly choose to use it.

[abidlabs]

I believe this is already should already be the case. Can you tell me what you're doing step by step and what you're seeing to indicate that frpc has been downloaded?

[UESENPAI]

Environment

• Docker base: nvcr.io/nvidia/pytorch:23.07-py3 (Ubuntu-based)
• Python: python --version → 3.10.x
• Gradio: python -c "import gradio; print(gradio.version)" → (latest at install time)
• Network: egress blocked (no internet from container at runtime)

Steps to reproduce

1. Build & run a minimal container with Gradio installed.
2. Start a Python session and do not use share=True anywhere. Example:

import gradio as gr
def echo(x): return x
demo = gr.Interface(echo, "text", "text")
# demo.launch(share=False, server_name="0.0.0.0", server_port=7860)
# (Even without calling launch, I see the behavior below.)

3. On first import/initialization, Gradio emits an error that references FRPC and a download path.

What I see

Error text (representative):

Could not create share link. Missing file: .../frpc_linux_amd64_v0.3
Please check your internet connection. You can install manually by:
1) Download: https://cdn-media.huggingface.co/frpc-gradio-0.3/frpc_linux_amd64
2) Rename to: frpc_linux_amd64_v0.3
3) Move to: <path printed in the error>

• In environments without internet access—e.g., security-mandated, air-gapped deployments—the download fails and Gradio cannot proceed unless that file is placed manually; moreover, downloading or whitelisting a tunneling binary is typically disallowed by policy.
• If I manually download the binary (outside), rename to frpc_linux_amd64_v0.3, and place it at the path printed in the error (e.g. /opt/...), Gradio proceeds normally.

What I expected

• No FRPC download/check at import/initialization.

• FRPC should be checked/downloaded only if/when share=True is explicitly used.

Why I’m confident it’s eager FRPC handling

• I can reproduce the message above without calling launch(share=True).

• The indicator is the exact error prompting me to fetch frpc_*_v0.3 from the CDN and place it at a specific path.

• After placing that file (size ~11.9 MB, SHA256 I observed: c791d1f047b41ff5885772fc4bf20b797c6059bbd82abb9e31de15e55d6a57c4), the error disappears and Gradio works even with share=False.

Ask
If current Gradio versions are meant to be lazy (FRPC only when share=True), then this looks like a regression or a code path that still triggers FRPC validation early. I’m happy to run a specific version or add debug flags you suggest to narrow down where the check is happening.

[freddyaboulton]

HI @UESENPAI ! In the latest version of gradio (5.46.0), that error message is only triggered in launch method of Blocks if share=True. Can you give us more info on the version you're using?

❯ grep -nR "Could not create share link" gradio --include \*.py
gradio/blocks.py:2757:                        f"\nCould not create share link. Checksum mismatch for file: {BINARY_PATH}."
gradio/blocks.py:2761:                        "\nCould not create share link. Please check your internet connection or our status page: https://status.gradio.app."
gradio/blocks.py:2765:                        f"\nCould not create share link. Missing file: {BINARY_PATH}. \n\nPlease check your internet connection. This can happen if your antivirus software blocks the download of this file. You can install manually by following these steps: \n\n1. Download this file: {BINARY_URL}\n2. Rename the downloaded file to: {BINARY_FILENAME}\n3. Move the file to this location: {BINARY_FOLDER}"