Paimon: Patch Identification Monster
Paimon is an extended version of GraphSPD [1], which is a graph-based security patch detection program.
Compared with the GraphSPD, Paimon makes the following changes:
Citation:
[1] Shu Wang, Xinda Wang, Kun Sun, Sushil Jajodia, Haining Wang, and Qi Li, “GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics,” 2023 IEEE Symposium on Security and Privacy (S&P 2023), San Francisco, CA, USA, 2023, pp. 2409-2426, doi: 10.1109/SP46215.2023.10179479.
Paimon can run on the conda environment by the following setup. The environment is based on GPU with cuda 11.7.
$ conda create -n paimon python=3.9
$ conda activate paimon
$ conda install numpy scipy transformers
$ conda install pytorch torchvision torchaudio pytorch-cuda=11.7 -c pytorch -c nvidia
$ conda install pyg -c pygIf using pip, execute the following commands.
$ pip install numpy scipy transformers
$ pip install torch torchvision torchaudio
$ pip install pyg_lib torch_scatter torch_sparse torch_cluster torch_spline_conv torch_geometric -f https://data.pyg.org/whl/torch-1.13.0+cu117.html
All commands are executed under the root folder: <PATH_TO_FOLDER>/Paimon/, which is refered as <root> in the following instructions.
If you train the model first time, please use the following commands.
python paimon.py --task trainYou can find the avaiable arguments by python paimon.py --help
If you have already processed the dataset, you can train the model using --train_only flag, which saves a lot of time in data processing.
python paimon.py --task train --train_onlyIf you do not use PatchCPG, you can train the twin network model by using the following commands.
python paimon.py --task train --twin The flag --train_only is also avaiable if you have processed dataset.
Test the model using the following command.
python paimon.py --task testIf you test the twin network model, please also include --twin flag.
The old version of GraphSPD also included in this repo. Please see the Old_ReadMe for instructions.