Merge pull request #4 from aidotse/PR#1

RMIA
aidotse · Mar 28, 2024 · eb8ed7f · eb8ed7f
2 parents ed79c9a + b8a89ea
commit eb8ed7f
Show file tree

Hide file tree

Showing 2 changed files with 53 additions and 11 deletions.
diff --git a/leakpro/mia_attacks/attack_objects.py b/leakpro/mia_attacks/attack_objects.py
@@ -1,6 +1,7 @@
 """Module for the AttackObjects class."""
 
 import logging
+import os
 import time
 from typing import List, Self
 
@@ -12,6 +13,7 @@
 
 from leakpro.dataset import Dataset
 from leakpro.model import Model, PytorchModel
+from leakpro.models import NN, ConvNet, SmallerSingleLayerConvNet  # noqa: F401
 
 
 class AttackObjects:
@@ -66,29 +68,49 @@ def __init__(  # noqa: PLR0913
             ),
         }
 
+        self.log_dir = configs["run"]["log_dir"]
+
+        path_shadow_models = f"{self.log_dir}/shadow_models"
+
+        # Check if the folder does not exist
+        if not os.path.exists(path_shadow_models):
+            # Create the folder
+            os.makedirs(path_shadow_models)
+
+        # List all entries in the directory
+        entries = os.listdir(path_shadow_models)
+        number_of_files_to_reuse = len(entries)
+
         # Train shadow models
         if self._num_shadow_models > 0:
             self._shadow_models = []
             self._shadow_train_indices = []
 
             f_shadow_data = configs["audit"]["f_attack_data_size"]
 
-            for _ in range(self._num_shadow_models):
-                # Create shadow datasets by sampling from the population
-                shadow_data_indices = self.create_shadow_dataset(f_shadow_data)
-                shadow_train_loader = DataLoader(Subset(population, shadow_data_indices),
-                                                 batch_size=configs["train"]["batch_size"],
-                                                 shuffle=True,)
-                self._shadow_train_indices.append(shadow_data_indices)
-
-                # Initialize a shadow model
+            for k in range(self._num_shadow_models):
                 if "adult" in configs["data"]["dataset"]:
                     shadow_model = target_model.__class__(configs["train"]["inputs"], configs["train"]["outputs"])
                 elif "cifar10" in configs["data"]["dataset"]:
                     shadow_model = target_model.__class__()
 
-                # Train the shadow model
-                shadow_model = self.train_shadow_model(shadow_model, shadow_train_loader, configs = configs)
+                if number_of_files_to_reuse > 0:
+                    shadow_model.load_state_dict(torch.load(f"{path_shadow_models}/model_{k}.pkl"))
+                    self._shadow_models.append(PytorchModel(shadow_model, CrossEntropyLoss()))
+                    number_of_files_to_reuse -= 1
+                else:
+                    # Create shadow datasets by sampling from the population
+                    shadow_data_indices = self.create_shadow_dataset(f_shadow_data)
+                    shadow_train_loader = DataLoader(Subset(population, shadow_data_indices),
+                                                     batch_size=configs["train"]["batch_size"],
+                                                     shuffle=True,)
+                    self._shadow_train_indices.append(shadow_data_indices)
+
+                    # Train the shadow model
+                    shadow_model = self.train_shadow_model(shadow_model, shadow_train_loader, configs = configs)
+
+                    #save the shadow model
+                    torch.save(shadow_model.state_dict(), f"{path_shadow_models}/model_{k}.pkl")
 
                 # TODO: come up with a way to use different loss functions
                 self._shadow_models.append(PytorchModel(shadow_model, CrossEntropyLoss()))

diff --git a/leakpro/models.py b/leakpro/models.py
@@ -63,6 +63,26 @@ def forward(self:Self, x:torch.Tensor) -> torch.Tensor:
         return self.fc3(x)
 
 
+class SmallerSingleLayerConvNet(nn.Module):
+    """Smaller Convolutional Neural Network model with only one convolutional layer."""
 
+    def __init__(self:Self) -> None:
+        """Initialize the SmallerSingleLayerConvNet model."""
+        super().__init__()
+        # Only one convolutional layer
+        self.conv1 = nn.Conv2d(3, 4, 5)
+        self.pool = nn.MaxPool2d(2, 2)
 
+        # Adjusting the linear layers since we now have only one conv layer
+        # Assuming the input image size is 32x32, after one convolution and pooling, the size is reduced to 14x14 (32 -> 28 -> 14)
+        self.fc1 = nn.Linear(4 * 14 * 14, 120)  # Adjusted to match the output of the pooling layer
+        self.fc2 = nn.Linear(120, 84)
+        self.fc3 = nn.Linear(84, 10)
 
+    def forward(self:Self, x:torch.Tensor) -> torch.Tensor:
+        """Forward pass of the model."""
+        x = self.pool(F.relu(self.conv1(x)))
+        x = torch.flatten(x, 1)  # flatten all dimensions except the batch
+        x = F.relu(self.fc1(x))
+        x = F.relu(self.fc2(x))
+        return self.fc3(x)