00000000000200000040000000020000000400000042", 0x49, 0x1700}, {&(0x7f0000011700)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001", 0x1b, 0x2200}, {&(0x7f0000011a00)="02", 0x1, 0x4000}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a09000000000006", 0x15, 0x10000}, {&(0x7f0000012e00)="02", 0x1, 0x10400}], 0x0, &(0x7f0000000380)=ANY=[], 0x0) (async)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0)
panic: bad group arg size 48, should be <= 0 for &prog.GroupArg{ArgCommon:prog.ArgCommon{ref:0x2de, dir:0x0}, Inner:[]prog.Arg{}} type "array"

goroutine 12 [running]:
github.com/google/syzkaller/prog.foreachArgImpl({0x8b4158, 0xc00fec9580}, 0xc00ffb3240, 0xc0000cbd00)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:157 +0x5d9
github.com/google/syzkaller/prog.foreachArgImpl({0x8b4198, 0xc0106429c0}, 0xc00ffb3240, 0xc0000cbd00)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:164 +0x337
github.com/google/syzkaller/prog.ForeachArg(0xc00fee4dc0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:123 +0x105
github.com/google/syzkaller/prog.(*Prog).MutateWithHints(0xc011432100, 0x7, 0xc0103599b0, 0xc0000cbd80)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/hints.go:78 +0xaa
main.(*Proc).executeHintSeed(0xc011432100, 0x7cd, 0x7)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:248 +0xd2
main.(*Proc).smashInput(0xc011432100, 0xc00efaf530)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:214 +0x88
main.(*Proc).loop(0xc011432100)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:78 +0x125
created by main.main
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:307 +0x15a5