<a href="https://colab.research.google.com/github/shreyas0328/AdversarialReprogramming/blob/master/resent152_to_CIFAR_10.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [None]:
import torch
import torch.nn as nn


from torch.nn import functional as F
from torchvision import datasets
from torchvision import transforms
from torchvision.models.resnet import resnet152


from PIL import Image

In [None]:
pimg_size = (224,224) # resnet image size is 224,224 with 3 channels
img_size = (32,32) # size of Cifar 10 images. Also has 3 channels
mask_size = pimg_size #size of masking matrix
num_channels = 3 # num channels for resnet

batch_size = 50

In [None]:
pad = int((pimg_size[0]-img_size[0])/2) # finding what padding I need on each border of the input image


transform = transforms.Compose([
    transforms.Pad(padding = [pad,pad,pad,pad]),
    transforms.ToTensor(),
    transforms.Normalize(mean=[0.485, 0.456, 0.406],
                         std=[0.229, 0.224, 0.225])
])
# adding padding, normalizing the data, and using lambda to up the num of channels

train_dataset = datasets.CIFAR10(root = 'data/', train=True, transform=transform, download=True) # download  dataset

test_dataset = datasets.CIFAR10(root = 'data/', train=False, transform=transform)


train_loader = torch.utils.data.DataLoader(
    train_dataset,
    batch_size=batch_size, shuffle=True
)



test_loader = torch.utils.data.DataLoader(
    test_dataset,
    batch_size=batch_size, shuffle=False
)


Downloading https://www.cs.toronto.edu/~kriz/cifar-10-python.tar.gz to data/cifar-10-python.tar.gz


100%|██████████| 170498071/170498071 [00:02<00:00, 78479508.42it/s]


Extracting data/cifar-10-python.tar.gz to data/


In [None]:


device = torch.device('cuda:0') # using GPU
model = resnet152(pretrained=True).to(device) # downloading pretrained framework
model.eval() # puts the resnet model into evaluation mode which is good cause we don't want to change the model as this is an adversarial attack
for param in model.parameters(): #making sure that no gradients are tracked while we use the model
    param.requires_grad = False

Downloading: "https://download.pytorch.org/models/resnet152-394f9c45.pth" to /root/.cache/torch/hub/checkpoints/resnet152-394f9c45.pth
100%|██████████| 230M/230M [00:03<00:00, 61.9MB/s]


In [None]:
program = torch.rand(num_channels, *pimg_size, device=device, requires_grad = True) #creating our adversarial program starting point by making a random tensor, which we will adjust later


mask_pad = int((mask_size[0]-img_size[0])/2)

mask = torch.zeros(num_channels, *img_size, device=device) # creating the mask
mask = F.pad(mask, (pad, pad, pad, pad), value=1)


optimizer = torch.optim.Adam([program], lr=0.05) #the optimizer which optimizes our adversarial program
lr_scheduler = torch.optim.lr_scheduler.StepLR(optimizer, step_size=2, gamma =0.96)# to adjust the learning rate as time goes on

loss_criterion = nn.CrossEntropyLoss() # loss criterion


num_classes = 10 # num classes for MNSIST

In [None]:
#Training loop
num_epochs = 20
steps_per_epoch = len(train_loader)

for epoch in range(num_epochs):

    if epoch == 0:
      print('Training has started')


    total_loss = 0.0

    for i, data in enumerate(train_loader):
      images = data[0].to(device) #grabbing images from the data
      labels = data[1].to(device) #grabbing labels from the data

      images = images + torch.tanh(program*mask) #additive contribution to the image

      outputs = model(images) # see what resnet classifies
      outputs = outputs[:,:num_classes] #only care about first 10 cause MNIST only has 10 classes.

      loss = loss_criterion(outputs, labels) # find loss
      loss.backward() # backwards pass
      optimizer.step() #update weights
      optimizer.zero_grad()


      total_loss += loss.item() #calculate total loss

      if(i+1)%(steps_per_epoch/2) == 0:
        print(f'Epoch {epoch+1}/{num_epochs},  Step {i+1}/{steps_per_epoch},  Loss:  {loss.item()},  Avg Loss for Epoch:  {total_loss/(i+1)}')
    lr_scheduler.step() # adjusting learning rate


Training has started


KeyboardInterrupt: 

In [None]:
# testing
with torch.no_grad():

  total_loss = 0.0
  total_steps = len(test_loader)
  total = 0
  total_correct = 0


  for data in test_loader:
      images = data[0].to(device)
      labels = data[1].to(device)

      images = images + torch.tanh(program*mask)
      outputs = model(images)
      outputs = outputs[:,:num_classes]

      preds = torch.argmax(torch.softmax(outputs, dim =1), dim = 1) #grabs index of highest pred

      total_correct += torch.sum(preds==labels).item()
      total+= labels.shape[0]

In [None]:
acc = (total_correct/total) * 100.0
print(f'Accuracy: {acc:.4f}')