fuzz: compile fuzzer in release mode

Otherwise, it's pretty easy to generate regexes that are under the size limit but take longer than the 60 second timeout in the fuzzer. This is in response to this bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26324 Actual fuzz test output: https://oss-fuzz.com/testcase-detail/5673225499181056
rust-lang · Oct 13, 2020 · 9067dfd · 9067dfd
1 parent d5bf98f
commit 9067dfd
Show file tree

Hide file tree

Showing 3 changed files with 17 additions and 0 deletions.
diff --git a/fuzz/Cargo.toml b/fuzz/Cargo.toml
@@ -21,3 +21,7 @@ members = ["."]
 [[bin]]
 name = "fuzz_regex_match"
 path = "fuzz_targets/fuzz_regex_match.rs"
+
+[profile.release]
+opt-level = 3
+debug = true
diff --git a/tests/regression_fuzz.rs b/tests/regression_fuzz.rs
@@ -0,0 +1,12 @@
+// These tests are only run for the "default" test target because some of them
+// can take quite a long time. Some of them take long enough that it's not
+// practical to run them in debug mode. :-/
+
+// See: https://oss-fuzz.com/testcase-detail/5673225499181056
+//
+// Ignored by default since it takes too long in debug mode (almost a minute).
+#[test]
+#[ignore]
+fn fuzz1() {
+    regex!(r"1}{55}{0}*{1}{55}{55}{5}*{1}{55}+{56}|;**");
+}
diff --git a/tests/test_default.rs b/tests/test_default.rs
@@ -49,6 +49,7 @@ mod misc;
 mod multiline;
 mod noparse;
 mod regression;
+mod regression_fuzz;
 mod replace;
 mod searcher;
 mod set;