The current proposal mentions a possible fuzztime flag. I wonder if it is better to overload the existing timeout flag instead.

\cc @jayconrod @katiehockman

fuzztime and timeout serve different purposes, so I don't think we should use them interchangably. We should handle the default interaction with timeout better while fuzzing though, so good call on that.

The description for timeout is "If a test binary runs longer than duration d, panic." If someone sets timeout while fuzzing, we don't want to panic when we hit that timeout (which we will if there is no crash). We could overload timeout to mean something different when fuzzing, but I worry that might be confusing. Instead, fuzztime determines how long the fuzzing engine will run for a given target when fuzzing. When it hits that deadline, it won't panic, but will simply stop gracefully with a OK status.

What I'm not sure about is what to do if someone does something like this:
go test -fuzz=FuzzFoo -run=FuzzFoo -timeout=1m -fuzztime=5m

Perhaps timeout only applies to the seed corpus, and if it exceeds that time when running the seed corpus it would crash, otherwise it will fuzz for 5 minutes. We should think on that a bit more.

I suggest that timeout should be also applied to fuzzing but use the default 0 instead 10 minutes. If a timeout value is provided it should be used for testing and fuzzing. This way we can avoid -fuzztime and all confusion resulting from it.

To be honest users will not care for tests on the seed corpus and timeouts on it. For me it was always stuff in a directory. I started often with one simple seed. What was important to me where the crashers, because I needed them to create the test cases for the required fixes.

I think there needs to be one other timeout: timeout for one fuzz function invocation. This will allow one to find not only crashers, but hangs due to endless loops, large memory consumption, blocking on reading, etc. https://github.com/dvyukov/go-fuzz has this flag:

  -timeout int
    	test timeout, in seconds (default 10)

I think we can redefine what -timeout means when -fuzz is passed.

To be honest users will not care for tests on the seed corpus and timeouts on it. For me it was always stuff in a directory.

As a user, I respectfully disagree. I used unit tests for filling seed corpus even before dev.fuzz made it much easier. I do care about testing seed corpus and timeouts on it.

Change https://golang.org/cl/313072 mentions this issue: [dev.fuzz] cmd/go/internal/test: don't set default timeout when fuzzing

This issue is focused on two main points: 1) the default timeout should be disabled when fuzzing and 2) we should consider a way to specify how long an execution of a fuzz function can run before it should be considered a "crash".

https://golang.org/cl/313072 fixes (1), and I'll track (2) in my list of feature requests/bugs to be filed all at once in a few weeks.

I have filed #46220, so will go ahead and close this one as fixed.