## Step 1: Download Dataset

Download the Urban8K dataset from the link below:

https://urbansounddataset.weebly.com/download-urbansound8k.html

The page will ask for basic details and then direct to the download link. The data size is about 6GB.

## Step 2: Unzip the Dataset

Once downloaded, unzip the file in "..\data\unzipped\" folder path.


In [9]:
from IPython.display import Audio
import librosa
from librosa import display
import numpy as np
from matplotlib import pyplot as plt
from matplotlib import cm
import pylab
from PIL import Image
from matplotlib.pyplot import imshow
import os as os
import pandas as pd
import pickle
from shutil import copy
import time
from sklearn.model_selection import train_test_split
from sklearn.preprocessing import OneHotEncoder
from sklearn.utils.class_weight import compute_class_weight

import torch
import torch.nn as nn
from torchvision import models
import torchvision
from collections import OrderedDict
import torch.nn.functional as F
from torch import optim
from torchvision import transforms
from torch.autograd import Variable

import progressbar
from time import sleep

%matplotlib inline

## Step 3: Create a Spectrogram Folder

Create a folder to store spectrogram images for various puposes.

1. Create folder path "..\spectogram_images\train"
2. Create folder path "..\spectogram_images\test"
3. Create folder path "..\spectogram_images\adv_train_in"
4. Create folder path "..\spectogram_images\adv_test_in"
5. Create folder path "..\spectogram_images\adv_train_out"
6. Create folder path "..\spectogram_images\adv_test_out"
7. Create folder path "..\spectrogram_images\train_adv"

In [52]:
if not os.path.exists('spectrogram_images/train'):
    os.makedirs('spectrogram_images/train')
if not os.path.exists('spectrogram_images/test'):
    os.makedirs('spectrogram_images/test')
if not os.path.exists('spectrogram_images/adv_train_in'):
    os.makedirs('spectrogram_images/adv_train_in')
if not os.path.exists('spectrogram_images/adv_test_in'):
    os.makedirs('spectrogram_images/adv_test_in')
if not os.path.exists('spectrogram_images/adv_test_out'):
    os.makedirs('spectrogram_images/adv_test_out')
if not os.path.exists('spectrogram_images/adv_train_out'):
    os.makedirs('spectrogram_images/adv_train_out')
if not os.path.exists('spectrogram_images/train_adv'):
    os.makedirs('spectrogram_images/train_adv')
if not os.path.exists('adv_train_models/'):
    os.makedirs('adv_train_models/')

In [11]:
#Preprocessing Files in Batch to generate and save Spectogram images
ADV_MODELS_DIR = "adv_train_models/"
WAV_DIR = 'data/unzipped/UrbanSound8K/audio/fold'
IMG_DIR = 'spectrogram_images/train/'
I_ADV_TRAIN_DIR = 'spectrogram_images/adv_train_in/'
I_ADV_TEST_DIR = 'spectrogram_images/adv_test_in/'
O_ADV_TRAIN_DIR = 'spectrogram_images/adv_train_out/'
O_ADV_TEST_DIR = 'spectrogram_images/adv_test_out/'

ADV_TRAIN_DIR = 'spectrogram_images/train_adv/'



# for i in range(1,4):
for i in range(1,9):
    wav_files = os.listdir(WAV_DIR + str(i) + '/')
    for f in wav_files:
        try:
            # Read wav-file
            y, sr = librosa.load(WAV_DIR + str(i) + '/' + f, sr = 22050)

            # Compute spectrogram
            M = librosa.feature.melspectrogram(y, sr, fmax = sr/2, n_fft=2048, hop_length=512, n_mels = 96, power = 2)

            # Power in DB
            log_power = librosa.power_to_db(M, ref=np.max)

            # Plotting the spectrogram
            pylab.figure(figsize=(5,5))
            pylab.axis('off') 
            pylab.axes([0., 0., 1., 1.], frameon=False, xticks=[], yticks=[])
            librosa.display.specshow(log_power, cmap=cm.jet)
            pylab.savefig(IMG_DIR + f[:-4]+'.jpg', bbox_inches=None, pad_inches=0)
            pylab.close()

        except Exception as e:
            print(f, e)
            pass

for i in range(9,10):
    wav_files = os.listdir(WAV_DIR + str(i) + '/')
    for f in wav_files:
        try:
            # Read wav-file
            y, sr = librosa.load(WAV_DIR + str(i) + '/' + f, sr = 22050)

            # Compute spectrogram
            M = librosa.feature.melspectrogram(y, sr, fmax = sr/2, n_fft=2048, hop_length=512, n_mels = 96, power = 2)

            # Power in DB
            log_power = librosa.power_to_db(M, ref=np.max)

            # Plotting the spectrogram
            pylab.figure(figsize=(5,5))
            pylab.axis('off') 
            pylab.axes([0., 0., 1., 1.], frameon=False, xticks=[], yticks=[])
            librosa.display.specshow(log_power, cmap=cm.jet)
            pylab.savefig(I_ADV_TRAIN_DIR + f[:-4]+'.jpg', bbox_inches=None, pad_inches=0)
            pylab.close()

        except Exception as e:
            print(f, e)
            pass
        
for i in range(10,11):
    wav_files = os.listdir(WAV_DIR + str(i) + '/')
    for f in wav_files:
        try:
            # Read wav-file
            y, sr = librosa.load(WAV_DIR + str(i) + '/' + f, sr = 22050)

            # Compute spectrogram
            M = librosa.feature.melspectrogram(y, sr, fmax = sr/2, n_fft=2048, hop_length=512, n_mels = 96, power = 2)

            # Power in DB
            log_power = librosa.power_to_db(M, ref=np.max)

            # Plotting the spectrogram
            pylab.figure(figsize=(5,5))
            pylab.axis('off') 
            pylab.axes([0., 0., 1., 1.], frameon=False, xticks=[], yticks=[])
            librosa.display.specshow(log_power, cmap=cm.jet)
            pylab.savefig(I_ADV_TEST_DIR + f[:-4]+'.jpg', bbox_inches=None, pad_inches=0)
            pylab.close()

        except Exception as e:
            print(f, e)
            pass

In [12]:
IMG_DIR = 'spectrogram_images/train/'
IMG_HEIGHT = 224
IMG_WIDTH = 224
NUM_CLASSES = 10
NUM_EPOCHS = 16
BATCH_SIZE = 10
L2_LAMBDA = 0.001
IMG_SIZE = (224, 224)
WAV_DIR = 'data/unzipped/UrbanSound8K/audio/fold'
IMG_DIR = 'spectrogram_images/train/'
I_ADV_TRAIN_DIR = 'spectrogram_images/adv_train_in/'
I_ADV_TEST_DIR = 'spectrogram_images/adv_test_in/'
O_ADV_TRAIN_DIR = 'spectrogram_images/adv_train_out/'
O_ADV_TEST_DIR = 'spectrogram_images/adv_test_out/'

In [13]:
one_hot = OneHotEncoder(categories=[range(NUM_CLASSES)])

all_files = os.listdir(IMG_DIR)

# Get class weights
label_array = []
for file_ in all_files:
    vals = file_.split('-')[1]
    label_array.append(int(vals))
    
cl_weight = compute_class_weight(class_weight = 'balanced', 
                                 classes = np.unique(label_array), 
                                 y = label_array)

# Train-val-test split of files
train_files, test_files, train_labels, test_labels = train_test_split(all_files, 
                                                                      label_array,
                                                                      random_state = 10, 
                                                                      test_size = 0.2
                                                                     )

# Among the test files, keep half for validation
val_files, test_files, val_labels, test_labels = train_test_split(test_files, test_labels,
                                                                  random_state = 10, 
                                                                  test_size = 0.5
                                                                 )

adv_train_files = os.listdir(I_ADV_TRAIN_DIR)

# Get class weights
adv_train_label = []
for file_ in all_files:
    vals = file_.split('-')[1]
    adv_train_label.append(int(vals))

adv_test_files = os.listdir(I_ADV_TEST_DIR)

# Get class weights
adv_test_label = []
for file_ in all_files:
    vals = file_.split('-')[1]
    adv_test_label.append(int(vals))

In [14]:
loader = transforms.Compose([transforms.Resize(IMG_SIZE), transforms.ToTensor()])
normalize = transforms.Normalize(mean=[0.485, 0.456, 0.406], std=[0.229, 0.224, 0.225])

def image_loader(image_name):
    """load image, returns tensor"""
    image = Image.open(image_name)
    image = image.convert("RGB")
    image = loader(image).float()
    image = normalize(image).float()
    return image


def load_batch(file_list):
    img_array = []
    idx_array = []
    label_array = []

    for file_ in file_list:
        im = IMG_DIR + file_
        
        img_array.append(np.array(image_loader(im)))

        vals = file_.split('-')
        idx_array.append(vals[0])
        label_array.append([int(vals[1])])

    label_array = one_hot.fit_transform(label_array).toarray()
    img_array = torch.FloatTensor(img_array)
    label_array = torch.LongTensor(label_array)
    
    return img_array, label_array

def batch_generator(files, BATCH_SIZE):
    L = len(files)

    #this line is just to make the generator infinite, keras needs that    
    while True:

        batch_start = 0
        batch_end = BATCH_SIZE

        while batch_start < L:
            
            limit = min(batch_end, L)
            file_list = files[batch_start: limit]
            batch_img_array, batch_label_array = load_batch(file_list)

            yield (batch_img_array, batch_label_array) # a tuple with two numpy arrays with batch_size samples     

            batch_start += BATCH_SIZE   
            batch_end += BATCH_SIZE

In [15]:
#Model Architecture Definition

model = models.vgg16(pretrained=True) #load vgg model

# you need to flatten the layer after vgg16 to get 18432, check the keras model in the original nb
model.classifier = nn.Sequential(nn.Linear(512*7*7,512),
                                nn.ReLU(),
                                nn.Dropout(0.3),
                                nn.Linear(512,NUM_CLASSES))  
# note there is no softmax layer while training, validating and testing put in that operation manually as the learning
# doesn't depend upon softmax layer, this way we will get logits. We can use logits in fgsm

print(model)

VGG(
  (features): Sequential(
    (0): Conv2d(3, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (1): ReLU(inplace)
    (2): Conv2d(64, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (3): ReLU(inplace)
    (4): MaxPool2d(kernel_size=2, stride=2, padding=0, dilation=1, ceil_mode=False)
    (5): Conv2d(64, 128, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (6): ReLU(inplace)
    (7): Conv2d(128, 128, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (8): ReLU(inplace)
    (9): MaxPool2d(kernel_size=2, stride=2, padding=0, dilation=1, ceil_mode=False)
    (10): Conv2d(128, 256, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (11): ReLU(inplace)
    (12): Conv2d(256, 256, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (13): ReLU(inplace)
    (14): Conv2d(256, 256, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1))
    (15): ReLU(inplace)
    (16): MaxPool2d(kernel_size=2, stride=2, padding=0, dilation=1, ceil_mode=False)
    (17): Conv2d

In [16]:
#Training and Validation Functions

def train (model, loader, criterion):
    #Custom Code for Progress Bar
    bar = progressbar.ProgressBar(maxval=100, \
    widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
    bar.start()
    
    model.train()
    current_loss = 0
    current_correct = 0
    i = 0
    i_percentage = 0
    for train, y_train in iter(loader):
        i = i+train.shape[0]
        if i > len(train_files):
            break
        y_train = torch.argmax(y_train, dim=1)
        train, y_train = train.to(device), y_train.to(device)
        optimizer.zero_grad()
        output = model.forward(train)
        _, preds = torch.max(output,1)
        loss = criterion(output, y_train)
        loss.backward()
        torch.nn.utils.clip_grad_norm_(model.classifier.parameters(), 50)
        optimizer.step()
        current_loss += loss.item()*train.size(0)
        current_correct += torch.sum(preds == y_train.data)
        i_percentage = (i/len(train_files))*100
        bar.update(i_percentage)
        
    bar.finish()
    epoch_loss = current_loss / len(train_files)
    epoch_acc = current_correct.double() / len(train_files)
        
    return epoch_loss, epoch_acc

#validate the model
def validation (model, loader, criterion):
    #Custom Code for Progress Bar
    bar = progressbar.ProgressBar(maxval=100, \
    widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
    bar.start()
    
    model.eval()
    valid_loss = 0
    valid_correct = 0
    i = 0
    i_percentage = 0
    for valid, y_valid in iter(loader):
        i = i+valid.shape[0]
        if i > len(val_files):
            break
        y_valid = torch.argmax(y_valid, dim=1)
        valid, y_valid = valid.to(device), y_valid.to(device)
        output = model.forward(valid)
        valid_loss += criterion(output, y_valid).item()*valid.size(0)
        equal = (output.max(dim=1)[1] == y_valid.data)
        valid_correct += torch.sum(equal)#type(torch.FloatTensor)
        i_percentage = (i/len(val_files))*100
        bar.update(i_percentage)
        
    bar.finish()
    epoch_loss = valid_loss / len(val_files)
    epoch_acc = valid_correct.double() / len(val_files)
    
    return epoch_loss, epoch_acc

def testing (model, loader, criterion, test_size):
    #Custom Code for Progress Bar
    bar = progressbar.ProgressBar(maxval=100, \
    widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
    bar.start()
    
    model.eval()
    test_loss = 0
    test_correct = 0
    i = 0
    i_percentage = 0
    for test, y_test in iter(loader):
        i = i+test.shape[0]
        if i > len(test_files):
            break
        y_test = torch.argmax(y_test, dim=1)
        test, y_test = test.to(device), y_test.to(device)
        output = model.forward(test)
        test_loss += criterion(output, y_test).item()*test.size(0)
        equal = (output.max(dim=1)[1] == y_test.data)
        test_correct += torch.sum(equal)#type(torch.FloatTensor)
        i_percentage = (i/test_size)*100
        bar.update(i_percentage)
        
    bar.finish()
    epoch_loss = test_loss / test_size
    epoch_acc = test_correct.double() / test_size
    
    return epoch_loss, epoch_acc

In [17]:
criteria = torch.nn.CrossEntropyLoss()
optimizer = optim.SGD(model.classifier.parameters(), lr = 0.005, momentum = 0.5)
device = torch.device('cuda:1' if torch.cuda.is_available() else 'cpu')
model = model.to(device)

In [18]:
import time
#Train the model

#freeze gradient parameters in pretrained model
for param in model.parameters():
    param.require_grad = True    

#freeze gradient parameters in pretrained model
for param in model.features.parameters():
    param.require_grad = False
    
#train and validate
#6 epochs seem to be enough
epochs = 8
epoch = 0

start = time.clock()    
for e in range(epochs):
    epoch +=1
    with torch.set_grad_enabled(True):
        epoch_train_loss, epoch_train_acc = train(model,batch_generator(train_files,BATCH_SIZE),criteria)
    print("Epoch: {} Train Loss : {:.4f}  Train Accuracy: {:.4f}".format(epoch,epoch_train_loss,epoch_train_acc))
    with torch.no_grad():
        epoch_val_loss, epoch_val_acc = validation(model,batch_generator(val_files,BATCH_SIZE),criteria)
    print("Epoch: {} Validation Loss : {:.4f}  Validation Accuracy {:.4f}".format(epoch,epoch_val_loss,epoch_val_acc))
print(start - time.clock())    



Epoch: 1 Train Loss : 2.0604  Train Accuracy: 0.3438




Epoch: 1 Validation Loss : 1.7759  Validation Accuracy 0.2500




Epoch: 2 Train Loss : 1.4270  Train Accuracy: 0.5156




Epoch: 2 Validation Loss : 1.4098  Validation Accuracy 0.5000




Epoch: 3 Train Loss : 1.0505  Train Accuracy: 0.7031




Epoch: 3 Validation Loss : 1.1245  Validation Accuracy 0.6250




Epoch: 4 Train Loss : 0.7603  Train Accuracy: 0.8281




Epoch: 4 Validation Loss : 0.9095  Validation Accuracy 0.7500




Epoch: 5 Train Loss : 0.5827  Train Accuracy: 0.9219




Epoch: 5 Validation Loss : 0.7422  Validation Accuracy 0.7500




Epoch: 6 Train Loss : 0.3931  Train Accuracy: 0.9688




Epoch: 6 Validation Loss : 0.6035  Validation Accuracy 0.8750




Epoch: 7 Train Loss : 0.3029  Train Accuracy: 0.9844




Epoch: 7 Validation Loss : 0.4662  Validation Accuracy 0.8750




Epoch: 8 Train Loss : 0.2170  Train Accuracy: 0.9844




Epoch: 8 Validation Loss : 0.3768  Validation Accuracy 1.0000
-1033.4592099480033


In [19]:
#Save the original training model
torch.save(model,'original_model.pt')

In [20]:
#model = torch.load('original_model.pt',map_location='cpu')

In [21]:
#Test Results

with torch.no_grad():
    epoch_test_loss, epoch_test_acc = testing(model,batch_generator(test_files,BATCH_SIZE),criteria,len(test_files))
print("Epoch: {} Test Loss : {:.4f}  Test Accuracy {:.4f}".format(1,epoch_test_loss,epoch_test_acc))




Epoch: 1 Test Loss : 0.4773  Test Accuracy 0.8750


In [22]:
def load_batch_2(file_list):
    img_array = []
    idx_array = []
    label_array = []

    for file_ in file_list:
        im = I_ADV_TRAIN_DIR + file_
        
        img_array.append(np.array(image_loader(im)))

        vals = file_.split('-')
        idx_array.append(vals[0])
        label_array.append([int(vals[1])])

    label_array = one_hot.fit_transform(label_array).toarray()
    img_array = torch.FloatTensor(img_array)
    label_array = torch.LongTensor(label_array)
    
    return img_array, label_array


#Generate Adversarial Images
batch_size = 5
pred = []
adv_pred = []
if 'adv_x' in locals():
    del adv_x

i=0
bar = progressbar.ProgressBar(maxval=100, \
widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
bar.start()
device = 'cpu'
un_normalize = transforms.Normalize(mean=[-0.485/0.229, -0.456/0.224, -0.406/0.225],std=[1/0.229, 1/0.224, 1/0.225])
un_convert = transforms.ToPILImage()

# ADV_IMG_DIR = 'spectrogram_images/adv/'

start = time.time()
adv_size = len(adv_train_files)
file_idx = 0
while i<adv_size:
    j = i + batch_size
    if j>adv_size:
        j = adv_size
    x,y = load_batch_2(adv_train_files[i:j])
    x = Variable(x, requires_grad=True)
    x,y = x.to(device), y.to(device)
    model = model.to(device)
    output = model.forward(x)
    y_label = torch.argmax(y, dim=1)
    y_label = y_label.to(device)
    loss = criteria(output, y_label)
    loss.backward()

    # Add perturbation 
    epsilon = 0.01
    x_grad     = torch.sign(x.grad.data)
    temp = x.data + epsilon*x_grad
    if 'adv_x' in locals():
        adv_x = torch.cat((adv_x,temp),0)
    else:
        adv_x = temp
    adv_x = adv_x.to(device)
    adv_output = model.forward(adv_x)
    adv_output = adv_output.to(device)

    x_pred = torch.argmax(y, dim=1)
    x_adv_pred = torch.argmax(adv_output,dim=1)
    
    x_pred, x_adv_pred = x_pred.to(device), x_adv_pred.to(device)

    pred.extend(x_pred.tolist())
    adv_pred.extend(x_adv_pred.tolist())
    for ii in range(j-i):
        temp = adv_x[ii]
        t1 = un_normalize(temp).float()
        t2 = un_convert(t1)
        t2.save(O_ADV_TRAIN_DIR + adv_train_files[file_idx], "JPEG", quality=80, optimize=True, progressive=True)
        file_idx += 1
        del temp
        del t1
        del t2
    i = j
    del adv_x
    bar.update((i/adv_size)*100)

bar.finish()

comp = []
for i in range(len(pred)):
    if pred[i] == adv_pred[i]:
        comp.extend([1])
    else:
        comp.extend([0])

adv_acc = (sum(comp)/len(comp))*100
print("The accuracy of model with adversarial examples is ","{0:.2f}".format(adv_acc),"%")
print(start - time.time())



The accuracy of model with adversarial examples is  10.00 %
-30.6001398563385


In [30]:
#Copy the files from training and adversarial images folder into a single training folder
import shutil
ADV_TRAIN_DIR = 'spectrogram_images/train_adv/'

for f in train_files:
    shutil.copy2(IMG_DIR + f,ADV_TRAIN_DIR)

for f in adv_train_files:
    shutil.copy2(O_ADV_TRAIN_DIR + f,ADV_TRAIN_DIR)


In [31]:
import gc
gc.collect()

8

In [32]:
#Train the network now with original + adversarial images
adv_files = os.listdir(ADV_TRAIN_DIR)

# Get class weights
adv_label = []
for file_ in adv_files:
    vals = file_.split('-')[1]
    adv_label.append(int(vals))
    
cl_weight = compute_class_weight(class_weight = 'balanced', 
                                 classes = np.unique(label_array), 
                                 y = label_array)

# Train-val-test split of files
train_files, test_files, train_labels, test_labels = train_test_split(adv_files, 
                                                                      adv_label,
                                                                      random_state = 10, 
                                                                      test_size = 0.2
                                                                     )

# Among the test files, keep half for validation
val_files, test_files, val_labels, test_labels = train_test_split(test_files, test_labels,
                                                                  random_state = 10, 
                                                                  test_size = 0.5
                                                                 )



In [36]:
def adv_train (model, loader, criterion,alpha):
    #Custom Code for Progress Bar
    bar = progressbar.ProgressBar(maxval=100, \
    widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
    bar.start()
    
    model.train()
    current_loss = 0
    current_correct = 0
    i = 0
    i_percentage = 0
    for train, y_train in iter(loader):
        train, y_train = train.to(device), y_train.to(device)
        train = Variable(train, requires_grad=True)
        i = i+train.shape[0]
        if i > len(train_files):
            break
        y_train = torch.argmax(y_train, dim=1)
        optimizer.zero_grad()
        output = model.forward(train)
        _, preds = torch.max(output,1)
        loss = criterion(output, y_train)
        loss.backward(retain_graph=True)
        
#         #adversarial
        
#         output = model.forward(x)
#         y_label = torch.argmax(y, dim=1)
#         loss = criteria(output, y_label)
#         loss.backward()

        # Add perturbation 
        epsilon = 0.01
        train_grad = torch.sign(train.grad.data)
        adv_train = train.data + epsilon*train_grad
        adv_train = adv_train.to(device)
        
        optimizer.zero_grad()
        adv_output = model.forward(adv_train)
        adv_output = adv_output.to(device)
        _, preds = torch.max(adv_output,1)
#       loss = 0.88 * (loss) + 0.12 * (criterion(adv_output, y_train))
        loss = alpha * (loss) + (1-alpha) * (criterion(adv_output, y_train))
        loss.backward()
        
        
        torch.nn.utils.clip_grad_norm_(model.classifier.parameters(), 50)
        optimizer.step()
        current_loss += loss.item()*train.size(0)
        current_correct += torch.sum(preds == y_train.data)
        i_percentage = (i/len(train_files))*100
        bar.update(i_percentage)
        
    bar.finish()
    epoch_loss = current_loss / len(train_files)
    epoch_acc = current_correct.double() / len(train_files)
        
    return epoch_loss, epoch_acc

In [37]:
#Model Architecture Definition

model = models.vgg16(pretrained=True) #load vgg model

# you need to flatten the layer after vgg16 to get 18432, check the keras model in the original nb
model.classifier = nn.Sequential(nn.Linear(512*7*7,512),
                                nn.ReLU(),
                                nn.Dropout(0.3),
                                nn.Linear(512,NUM_CLASSES))  

criteria = torch.nn.CrossEntropyLoss()
optimizer = optim.SGD(model.classifier.parameters(), lr = 0.005, momentum = 0.5)
device = torch.device('cuda:1' if torch.cuda.is_available() else 'cpu')
# device = 'cpu'
model = model.to(device)

#freeze gradient parameters in pretrained model
for param in model.parameters():
    param.require_grad = True    

#freeze gradient parameters in pretrained model
for param in model.features.parameters():
    param.require_grad = False



In [38]:
def load_batch_v(file_list):
    img_array = []
    idx_array = []
    label_array = []

    for file_ in file_list:
        im = ADV_TRAIN_DIR + file_
        
        img_array.append(np.array(image_loader(im)))

        vals = file_.split('-')
        idx_array.append(vals[0])
        label_array.append([int(vals[1])])

    label_array = one_hot.fit_transform(label_array).toarray()
    img_array = torch.FloatTensor(img_array)
    label_array = torch.LongTensor(label_array)
    
    return img_array.to(device), label_array.to(device)

def batch_generator_v(files, BATCH_SIZE):
    L = len(files)
   
    while True:

        batch_start = 0
        batch_end = BATCH_SIZE

        while batch_start < L:
            
            limit = min(batch_end, L)
            file_list = files[batch_start: limit]
            batch_img_array, batch_label_array = load_batch_v(file_list)

            yield (batch_img_array, batch_label_array) # a tuple with two numpy arrays with batch_size samples     

            batch_start += BATCH_SIZE   
            batch_end += BATCH_SIZE

In [53]:
#train and validate
#Need to see at what epoch gain stops
epochs = 20
epoch = 0
alpha_values = [0.4,0.5,0.55,0.6,0.65,0.7,0.75,0.8]
start = time.time()
for alpha in alpha_values:
    print("\nFor alpha value: ",alpha)
    filepath = "adv_train_models/adv_model_"+str(alpha)+".pt"
    for e in range(epochs):
        with torch.set_grad_enabled(True):
            epoch_train_loss, epoch_train_acc = adv_train(model,batch_generator_v(train_files,BATCH_SIZE),criteria,alpha)
        print("Epoch: {} Train Loss : {:.4f}  Train Accuracy: {:.4f}".format(e,epoch_train_loss,epoch_train_acc))
        with torch.no_grad():
            epoch_val_loss, epoch_val_acc = validation(model,batch_generator_v(val_files,BATCH_SIZE),criteria)
        print("Epoch: {} Validation Loss : {:.4f}  Validation Accuracy {:.4f}".format(e,epoch_val_loss,epoch_val_acc))
    torch.save(model,filepath)
print(time.time() - start)    


For alpha value:  0.4




Epoch: 0 Train Loss : 0.0670  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0559  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0580  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0531  Validation Accuracy 1.0000

For alpha value:  0.5




Epoch: 0 Train Loss : 0.0432  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0508  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0631  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0474  Validation Accuracy 1.0000

For alpha value:  0.55




Epoch: 0 Train Loss : 0.0306  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0438  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0406  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0426  Validation Accuracy 1.0000

For alpha value:  0.6




Epoch: 0 Train Loss : 0.0312  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0406  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0288  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0393  Validation Accuracy 1.0000

For alpha value:  0.65




Epoch: 0 Train Loss : 0.0315  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0380  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0252  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0371  Validation Accuracy 1.0000

For alpha value:  0.7




Epoch: 0 Train Loss : 0.0271  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0359  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0258  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0342  Validation Accuracy 1.0000

For alpha value:  0.75




Epoch: 0 Train Loss : 0.0175  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0333  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0142  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0324  Validation Accuracy 1.0000

For alpha value:  0.8




Epoch: 0 Train Loss : 0.0133  Train Accuracy: 1.0000




Epoch: 0 Validation Loss : 0.0319  Validation Accuracy 1.0000




Epoch: 1 Train Loss : 0.0144  Train Accuracy: 1.0000




Epoch: 1 Validation Loss : 0.0312  Validation Accuracy 1.0000
767.6522016525269


In [43]:
model_adv = torch.load('adv_train_models/adv_model_0.75.pt',map_location='cpu')

In [47]:
#Test Results

with torch.no_grad():
    epoch_test_loss, epoch_test_acc = testing(model_adv,batch_generator_v(test_files,BATCH_SIZE),criteria,len(test_files))
print("Epoch: {} Test Loss : {:.4f}  Test Accuracy {:.4f}".format(1,epoch_test_loss,epoch_test_acc))



Epoch: 1 Test Loss : 4.0330  Test Accuracy 0.0000


In [54]:
def load_batch_3(file_list):
    img_array = []
    idx_array = []
    label_array = []

    for file_ in file_list:
        im = I_ADV_TEST_DIR + file_
        
        img_array.append(np.array(image_loader(im)))

        vals = file_.split('-')
        idx_array.append(vals[0])
        label_array.append([int(vals[1])])

    label_array = one_hot.fit_transform(label_array).toarray()
    img_array = torch.FloatTensor(img_array)
    label_array = torch.LongTensor(label_array)
    
    return img_array.to(device), label_array.to(device)

In [55]:
def adv_attack(model):

    start = time.time()
    #Generate Adversarial Images
    batch_size = 5
    pred = []
    adv_pred = []
    if 'adv_x' in locals():
        del adv_x
    
    i=0
    bar = progressbar.ProgressBar(maxval=100, \
    widgets=[progressbar.Bar('=', '[', ']'), ' ', progressbar.Percentage()])
    bar.start()
    
    un_normalize = transforms.Normalize(mean=[-0.485/0.229, -0.456/0.224, -0.406/0.225],std=[1/0.229, 1/0.224, 1/0.225])
    un_convert = transforms.ToPILImage()
    
    # ADV_IMG_DIR = 'spectrogram_images/adv/'
    
    
    adv_size = len(adv_test_files)
    file_idx = 0
    while i<adv_size:
        j = i + batch_size
        if j>adv_size:
            j = adv_size
        x,y = load_batch_3(adv_test_files[i:j])
        x = Variable(x, requires_grad=True)
        model = model.to(device)
        output = model.forward(x)
        y_label = torch.argmax(y, dim=1)
        loss = criteria(output, y_label)
        loss.backward()
    
        # Add perturbation 
        epsilon = 0.01
        x_grad     = torch.sign(x.grad.data)
        temp = x.data + epsilon*x_grad
        if 'adv_x' in locals():
            adv_x = torch.cat((adv_x,temp),0)
        else:
            adv_x = temp
        adv_x = adv_x.to(device)
        adv_output = model.forward(adv_x)
    
        x_pred = torch.argmax(y, dim=1)
        x_adv_pred = torch.argmax(adv_output,dim=1)
        
    
        pred.extend(x_pred.tolist())
        adv_pred.extend(x_adv_pred.tolist())
        for ii in range(j-i):
            temp = adv_x[ii]
            temp = temp.to('cpu')
            t1 = un_normalize(temp).float()
            t2 = un_convert(t1)
            t2.save(O_ADV_TEST_DIR + adv_test_files[file_idx], "JPEG", quality=80, optimize=True, progressive=True)
            file_idx += 1
            del temp
            del t1
            del t2
        i = j
        del adv_x
        bar.update((i/adv_size)*100)
    
    bar.finish()
    
    comp = []
    for i in range(len(pred)):
        if pred[i] == adv_pred[i]:
            comp.extend([1])
        else:
            comp.extend([0])
    
    adv_acc = (sum(comp)/len(comp))*100
    print("The accuracy of model with adversarial examples is ","{0:.2f}".format(adv_acc),"%")
    print("Elapsed Time: ",time.time() - start) 

In [56]:
for f in os.listdir(ADV_MODELS_DIR):
    print("\nModel Name: ",f)
    m = torch.load(ADV_MODELS_DIR+f,map_location='cpu')
    adv_attack(m)


Model Name:  adv_model_0.4.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  27.836429834365845

Model Name:  adv_model_0.5.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  34.341858863830566

Model Name:  adv_model_0.55.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  31.50721001625061

Model Name:  adv_model_0.6.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  33.811309576034546

Model Name:  adv_model_0.65.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  36.622485637664795

Model Name:  adv_model_0.7.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  33.48609662055969

Model Name:  adv_model_0.75.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  32.577117919921875

Model Name:  adv_model_0.8.pt




The accuracy of model with adversarial examples is  0.00 %
Elapsed Time:  32.06612849235535
