In [1]:
import torch
import torchvision
import torchvision.transforms as transforms
from torch.utils.data import DataLoader
from autoattack import AutoAttack
from resnet import *

In [2]:
# load model
model = ResNet18()
ckpt = torch.load("model_test.pt")
model.load_state_dict(ckpt)
device = torch.device("cuda:0" if torch.cuda.is_available() else "cpu")
model.to(device)
model.eval()

ResNet(
  (conv1): Conv2d(3, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1), bias=False)
  (bn1): BatchNorm2d(64, eps=1e-05, momentum=0.1, affine=True, track_running_stats=True)
  (layer1): Sequential(
    (0): BasicBlock(
      (conv1): Conv2d(64, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1), bias=False)
      (bn1): BatchNorm2d(64, eps=1e-05, momentum=0.1, affine=True, track_running_stats=True)
      (conv2): Conv2d(64, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1), bias=False)
      (bn2): BatchNorm2d(64, eps=1e-05, momentum=0.1, affine=True, track_running_stats=True)
      (shortcut): Sequential()
    )
    (1): BasicBlock(
      (conv1): Conv2d(64, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1), bias=False)
      (bn1): BatchNorm2d(64, eps=1e-05, momentum=0.1, affine=True, track_running_stats=True)
      (conv2): Conv2d(64, 64, kernel_size=(3, 3), stride=(1, 1), padding=(1, 1), bias=False)
      (bn2): BatchNorm2d(64, eps=1e-05, momentum=0.1, affine=

# Linf

In [3]:
# load data
aa_data_linf = torch.load("aa_results/aa_cifar10_standard_1_5000_norm_Linf.pth")
# Load the CIFAR-10 test set
transform = transforms.Compose(
    [transforms.ToTensor(),
     transforms.Normalize((0.5088964127604166, 0.48739301317401956, 0.44194221124387256),
                          (0.2682515741720801, 0.2573637364478126, 0.2770957707973042))
    ])
testset = torchvision.datasets.CIFAR10(root='./data', train=False,
                                       download=True, transform=transform)

Files already downloaded and verified


In [4]:
images = aa_data_linf['adv_complete'][0]
labels = aa_data_linf['adv_complete'][1].tolist()
aa_list_linf = []

for i in range(len(images)):
    sample = (images[i], labels[i])
    aa_list_linf.append(sample)

In [8]:
# let the label of aa samples be 10
real_aa_list_linf = []

for i in range(len(aa_list_linf)):
    if aa_list_linf[i][1] != testset[i][1]:
        real_aa_sample = (images[i], 10)
        real_aa_list_linf.append(real_aa_sample)

In [9]:
print(real_aa_list_linf[0])

(tensor([[[0.6098, 0.6362, 0.6164,  ..., 0.5686, 0.4870, 0.4863],
         [0.5647, 0.5640, 0.5922,  ..., 0.5034, 0.4712, 0.4980],
         [0.5875, 0.5669, 0.5930,  ..., 0.5638, 0.5404, 0.5020],
         ...,
         [0.2360, 0.1955, 0.1414,  ..., 0.1804, 0.0824, 0.1255],
         [0.2078, 0.2197, 0.1686,  ..., 0.1333, 0.0824, 0.0471],
         [0.1804, 0.2214, 0.2073,  ..., 0.1255, 0.1380, 0.1137]],

        [[0.4509, 0.4649, 0.4235,  ..., 0.4029, 0.3255, 0.3647],
         [0.4673, 0.4620, 0.4157,  ..., 0.3617, 0.3440, 0.3765],
         [0.4627, 0.4588, 0.4355,  ..., 0.3562, 0.3698, 0.3804],
         ...,
         [0.4638, 0.4230, 0.3630,  ..., 0.4118, 0.2659, 0.3605],
         [0.4235, 0.3686, 0.3252,  ..., 0.3529, 0.2902, 0.2824],
         [0.4510, 0.3848, 0.3610,  ..., 0.3333, 0.3001, 0.2941]],

        [[0.1631, 0.1529, 0.1686,  ..., 0.1725, 0.1098, 0.1122],
         [0.1686, 0.1255, 0.1681,  ..., 0.1412, 0.1569, 0.1034],
         [0.1580, 0.1012, 0.1490,  ..., 0.1084, 0.1227, 0

In [66]:
# save the results in dict
torch.save({'adv_complete': real_aa_list_linf}, 'real_cifar10_Linf_5000.pth')

# L2

In [60]:
# similar procedure with Linf

aa_data_l2 = torch.load("aa_results/aa_cifar10_standard_1_5000_norm_L2.pth")

In [68]:
images = aa_data_l2['adv_complete'][0]
labels = aa_data_l2['adv_complete'][1].tolist()
aa_list_l2 = []

for i in range(len(images)):
    sample = (images[i], labels[i])
    aa_list_l2.append(sample)

In [72]:
real_aa_list_l2 = []

for i in range(len(aa_list_l2)):
    if aa_list_l2[i][1] != testset[i][1]:
        real_aa_sample = (images[i], 10)
        real_aa_list_l2.append(real_aa_sample)

In [73]:
len(real_aa_list_l2)

657

In [74]:
# save the results in dict 
torch.save({'adv_complete': real_aa_list_l2}, 'real_cifar10_L2_5000.pth')