# Setup environment

In [1]:
# Essentials
import os
import numpy as np
import importlib

# PyTorch
import torch
from torch.utils.data import DataLoader

# Utils
import utils
importlib.reload(utils)

from utils import get_dict, get_files, check_corrupted_imgs, perturb_image, save_image, make_dirs, get_model, select_gpu
from utils import CustomTransforms, My_data, FocalLoss

# OnePixelAttack
import OnePixelAttack

importlib.reload(OnePixelAttack)

# TriangleAttack
import TriangleAttack
importlib.reload(TriangleAttack)

<module 'TriangleAttack' from '/home/jovyan/TriangleAttack.py'>

## Setup Cuda

In [2]:
# Set a higher max split size to avoid memory problems
os.environ["PYTORCH_CUDA_ALLOC_CONF"] = "max_split_size_mb:512"

In [3]:
global device
device = torch.device(f"cuda:{select_gpu()}" if torch.cuda.is_available() else "cpu")

print(device)

if torch.cuda.is_available():
    torch.cuda.empty_cache()
    print(torch.cuda.memory_summary(device=None, abbreviated=False))
    torch.cuda.manual_seed(42)
    torch.cuda.manual_seed_all(42)
    torch.backends.cudnn.benchmark = True
    torch.backends.cudnn.deterministic = False

Selecting GPU 0 with 22729MB free memory
cuda:0
|                  PyTorch CUDA memory summary, device ID 0                 |
|---------------------------------------------------------------------------|
|            CUDA OOMs: 0            |        cudaMalloc retries: 0         |
|        Metric         | Cur Usage  | Peak Usage | Tot Alloc  | Tot Freed  |
|---------------------------------------------------------------------------|
| Allocated memory      |       0 B  |       0 B  |       0 B  |       0 B  |
|       from large pool |       0 B  |       0 B  |       0 B  |       0 B  |
|       from small pool |       0 B  |       0 B  |       0 B  |       0 B  |
|---------------------------------------------------------------------------|
| Active memory         |       0 B  |       0 B  |       0 B  |       0 B  |
|       from large pool |       0 B  |       0 B  |       0 B  |       0 B  |
|       from small pool |       0 B  |       0 B  |       0 B  |       0 B  |
|---------------

## Get the data

In [4]:
# Load train and test files that are used for the model.
train_dict = get_dict("train.txt")
print("done")
test_dict = get_dict("test.txt")
print("done")

print(check_corrupted_imgs(train_dict, test_dict))

print("copying completed")

Opening Train.txt
done
Opening Train.txt
done
True
copying completed


In [5]:
train_files = get_files("./dataset/train/**/**/*.png")

test_files = get_files("./dataset/test/**/**/*.png")

# print(train_files)

## Setup Transformers

In [6]:
custom_transforms = CustomTransforms()
resize_transform = custom_transforms.get_transform("resize_tensor")
test_transform = custom_transforms.get_transform("test")

# Random Attack 

In [7]:
# original = My_data([test_files[0]])[0][0]

# p_tensor = np.copy(original)

# for i in range(100):
#     perturbation = [i, i] + list(np.random.choice(range(256), size=3))

#     p_tensor = perturb_image(perturbation, p_tensor)

# save_image(p_tensor, "perturbedimagerandom.png")


In [8]:
# tensor_list = [original, p_tensor]

# org = resize_transform(image=original)
# org_im = org['image']

# org_norm = test_transform(image=original)
# org_norm_im = org_norm['image']

# save_image(org_im, "org.png")
# save_image(org_norm_im, "org_norm.png")

In [9]:
# per = resize_transform(image=p_tensor)
# per_im = per['image']

# per_norm = test_transform(image=p_tensor)
# per_norm_im = per_norm['image']

# save_image(per_im, "per.png")
# save_image(per_norm_im, "per_norm.png")

In [10]:
# Deze wordt nu niet gecallt om tijd te besparen tijdens run all (nodig na veranderen geimporteerd bestand)
def simple_one_pixel_attack():
    make_dirs("simple_one_pixel")
    orgs = My_data(test_files)
    for i in range(orgs.__len__()):
        p_tensor = np.copy(orgs.__getitem__(i)[0])
        for j in range(200):
            random_x = np.random.choice(range(1, 698))
            random_y = np.random.choice(range(1, 398))

            random_xs = [random_x - 1, random_x, random_x + 1]
            random_ys = [random_y - 1, random_y, random_y + 1]

            for x in random_xs:
                for y in random_ys:
                    perturbation = [y, x] + list(np.random.choice(range(256), size=3))
                    p_tensor = perturb_image(perturbation, p_tensor)
                    
        save_image(p_tensor, os.path.join(os.getcwd(), "dataset", "simple_one_pixel", orgs.__getclass__(i), orgs.__getzoom__(i), orgs.__getname__(i)))


In [11]:
# org_norm = My_data(test_files, transforms=test_transform)
# perturb_data = My_data(get_files("./dataset/test_onepixel/**/**/*.png"), transforms=test_transform)

# org_dataloader = DataLoader(org_norm)
# pertrubed_dataloader = DataLoader(perturb_data)

## Test performance of Simple OnePixel Attack

In [12]:
# model = get_model(device, test_dict)

# model.eval()
# correct_org = 0
# correct_pert = 0
# confs_org = []
# confs_pert = []
# with torch.no_grad():
#     print("Testing network without attacks...")
#     for i, (inputs, labels) in enumerate(org_dataloader):
#         inputs = inputs.to(device)
#         labels = labels.float()
#         labels = labels.to(device)
#         outputs = model(inputs)
#         confs_org.append(outputs)
        
#         if torch.argmax(outputs) == torch.argmax(labels):
#             correct_org += 1
#     print(f"Accuracy of network without attack: {correct_org/len(test_files)}")
# # ######################## Run TinySwin without attacks ########################
#     print("Testing network with OnePixel attack...")
#     for i, (inputs, labels) in enumerate(pertrubed_dataloader):
#         inputs = inputs.to(device)
#         labels = labels.float()
#         labels = labels.to(device)
#         outputs = model(inputs)
#         confs_pert.append(outputs)
        
#         if torch.argmax(outputs) == torch.argmax(labels):
#             correct_pert += 1
#     print(f"Accuracy of network with OnePixel attack: {correct_pert/len(test_files)}")

#     # Compare the performance in confidence outputs
#     print(sum([torch.max(confs_org[i]) > torch.max(confs_pert[i]) for i in range(len(test_files))]), len(test_files))

In [13]:
# # Show all differences in predictions
# for i in range(len(test_files)):
#     if torch.argmax(confs_org[i]) != torch.argmax(confs_pert[i]):
#         print("Different predictions")
#         print(confs_org[i])
#         print(confs_pert[i])
#         print(test_files[i])

# Advanced OnePixel Attack

In [14]:
# org_norm = My_data(test_files, transforms=test_transform)
# org_dataloader = DataLoader(org_norm)

# model = get_model(device, test_dict, "resnet")

# model.eval()
# with torch.no_grad():
#     success = 0
#     correct_init_classification = 0
#     for i, (image, label) in enumerate(org_dataloader):
#         success, correct_init_classification = OnePixelAttack.attack(i, model, device, image, label, pixel_count=1, maxiter=50, popsize=15)
#         success += success  
#         correct_init_classification += correct_init_classification


#     print(success)
#     print("Accuracy", correct_init_classification / len(org_dataloader.dataset))

# Triangle attack   

In [15]:
import os

os.environ["GIT_PYTHON_GIT_EXECUTABLE"] = "/usr/bin/git"

import git
git.refresh("/usr/bin/git")

from foolbox import PyTorchModel
from TriangleAttack import TA


org_norm = My_data(test_files, transforms=test_transform)
org_dataloader = DataLoader(org_norm)
model = PyTorchModel(get_model(device, test_dict).eval(), bounds=(0,1), device=device)

  return _VF.meshgrid(tensors, **kwargs)  # type: ignore[attr-defined]


In [16]:
# run on a10 gpu as it has highest memory
print("Attack !")

with torch.no_grad():
    ta_model = TA(model, input_device=device)
    my_advs, q_list, my_intermediates, max_length = ta_model.attack(org_dataloader)
    print('TA Attack Done')

Attack !
torch.Size([777])
loading best_advs

 tensor([[[0.6706, 0.7137, 0.7294,  ..., 0.7490, 0.7373, 0.6784],
         [0.7098, 0.7294, 0.7373,  ..., 0.7451, 0.7373, 0.6706],
         [0.7059, 0.7333, 0.7373,  ..., 0.7020, 0.7412, 0.6745],
         ...,
         [0.7725, 0.7843, 0.7882,  ..., 0.8157, 0.8235, 0.8157],
         [0.7804, 0.8039, 0.8078,  ..., 0.8275, 0.8275, 0.8157],
         [0.7765, 0.7804, 0.8078,  ..., 0.8275, 0.8196, 0.8000]],

        [[0.5804, 0.5961, 0.6353,  ..., 0.7216, 0.6980, 0.6549],
         [0.6000, 0.6118, 0.6353,  ..., 0.7059, 0.6980, 0.6667],
         [0.6118, 0.6196, 0.6471,  ..., 0.6667, 0.7216, 0.6745],
         ...,
         [0.8039, 0.8157, 0.8196,  ..., 0.8824, 0.8941, 0.8824],
         [0.8157, 0.8314, 0.8275,  ..., 0.8863, 0.8863, 0.8824],
         [0.8078, 0.7961, 0.8275,  ..., 0.8863, 0.8824, 0.8706]],

        [[0.6275, 0.6667, 0.7020,  ..., 0.7137, 0.7137, 0.6745],
         [0.6549, 0.6824, 0.6863,  ..., 0.6980, 0.7137, 0.6784],
         [0

AttributeError: 'TA' object has no attribute 'get_label'

In [None]:
best_advs[0]


# Test Area

In [None]:
# import albumentations
# import albumentations.pytorch

# transforms_a =  albumentations.Compose([
#                 albumentations.Resize(256, 256),
#                 albumentations.Normalize(mean=[0, 0, 0], std=[255, 255, 255], max_pixel_value=1.0),
#                 albumentations.pytorch.transforms.ToTensorV2()
#             ])

# test_a= My_data([test_files[0]], transforms_a)

# save_image(test_a.__getitem__(0)[0], "attemptofsucces_a.png")

# transforms_b =  albumentations.Compose([
#                 albumentations.Resize(256, 256),
#                 albumentations.Normalize(mean=[0 , 0, 0], std=[1, 1, 1], max_pixel_value=255),
#                 albumentations.pytorch.transforms.ToTensorV2()
#             ])

# test_b = My_data([test_files[0]], transforms_b)

# save_image(test_b.__getitem__(0)[0], "attemptofsucces_b.png")

In [None]:
# print(org_dataloader.dataset)