fatal error: fault
D0320 01:52:34.651875  441968 task_signals.go:220] [   6: 2753] Signal 23: delivering to handler
[signal SIGSEGV: segmentation violation code=0x1 addr=0x51bd pc=0x53f6df]

goroutine 74 [running]:
runtime.throw({0xa4eb45?, 0xc001869540?})
	/usr/local/go/src/runtime/panic.go:1047 +0x5d fp=0xc0019fd510 sp=0xc0019fd4e0 pc=0x4363bd
runtime.sigpanic()
	/usr/local/go/src/runtime/signal_unix.go:851 +0x28a fp=0xc0019fd570 sp=0xc0019fd510 pc=0x44cf4a
github.com/google/syzkaller/prog.foreachArgImpl({0xcbd510?, 0xc0011453a0?}, 0xc001869540, 0xbfba48)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:152 +0x3bf fp=0xc0019fd6f8 sp=0xc0019fd570 pc=0x53f6df
github.com/google/syzkaller/prog.foreachArgImpl({0xcbd510?, 0xc0011c96c0?}, 0xc001869540, 0xbfba48)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:151 +0x3ba fp=0xc0019fd880 sp=0xc0019fd6f8 pc=0x53f6da
github.com/google/syzkaller/prog.foreachArgImpl({0xcbd510?, 0xc0011c96e0?}, 0xc001869540, 0xbfba48)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:151 +0x3ba fp=0xc0019fda08 sp=0xc0019fd880 pc=0x53f6da
github.com/google/syzkaller/prog.foreachArgImpl({0xcbd550?, 0xc0011d0c30?}, 0xc001869540, 0xbfba48)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:168 +0x2ce fp=0xc0019fdb90 sp=0xc0019fda08 pc=0x53f5ee
github.com/google/syzkaller/prog.ForeachSubArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:116
github.com/google/syzkaller/prog.removeArg({0xcbd550, 0xc0011d0c30})
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/prog.go:398 +0x45 fp=0xc0019fdbc0 sp=0xc0019fdb90 pc=0x561e65
github.com/google/syzkaller/prog.(*Prog).RemoveCall(0xc000c4ce80, 0x4)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/prog.go:426 +0x65 fp=0xc0019fdc18 sp=0xc0019fdbc0 pc=0x561f05
github.com/google/syzkaller/prog.(*mutator).insertCall(0xc0019fdd60)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:155 +0x3bd fp=0xc0019fdcd8 sp=0xc0019fdc18 pc=0x558f1d
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc000c4ce80, {0xcbb448?, 0xc000ba8ba0}, 0x1e, 0xc000680e40, 0xc0005f6b40, {0xc0006d6000, 0x25c, 0x350})
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:49 +0x2ac fp=0xc0019fddb0 sp=0xc0019fdcd8 pc=0x557f0c
main.(*Proc).smashInput(0xc000680fc0, 0xc0073d7430)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:219 +0x16b fp=0xc0019fde98 sp=0xc0019fddb0 pc=0x90644b
main.(*Proc).loop(0xc000680fc0)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:78 +0xf2 fp=0xc0019fdfc8 sp=0xc0019fde98 pc=0x904b12
main.main.func2()
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc0019fdfe0 sp=0xc0019fdfc8 pc=0x900e06
runtime.goexit()
	/usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0019fdfe8 sp=0xc0019fdfe0 pc=0x469661
created by main.main
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x1605