unexpected fault address 0x0
fatal error: fault
[signal SIGBUS: bus error code=0x80 addr=0x0 pc=0x5511ff]

goroutine 23 gp=0xc000f38a80 m=9 mp=0xc001560808 [running]:
runtime.throw({0xb25c7b?, 0x562965?})
	/usr/local/go/src/runtime/panic.go:1023 +0x5c fp=0xc00155c848 sp=0xc00155c818 pc=0x43c99c
runtime.sigpanic()
	/usr/local/go/src/runtime/signal_unix.go:878 +0x116 fp=0xc00155c8a8 sp=0xc00155c848 pc=0x4550b6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d4e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:182 +0x51f fp=0xc00155ca70 sp=0xc00155c8a8 pc=0x5511ff
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d580}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155cc38 sp=0xc00155ca70 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5a0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155ce00 sp=0xc00155cc38 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7940, 0xc001524ea0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:203 +0x454 fp=0xc00155cfc8 sp=0xc00155ce00 pc=0x551134
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5c0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d190 sp=0xc00155cfc8 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d358 sp=0xc00155d190 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d6a0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d520 sp=0xc00155d358 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7900, 0xc001524ed0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:200 +0x429 fp=0xc00155d6e8 sp=0xc00155d520 pc=0x551109
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d6e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d8b0 sp=0xc00155d6e8 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7900, 0xc001524f60}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:200 +0x429 fp=0xc00155da78 sp=0xc00155d8b0 pc=0x551109
github.com/google/syzkaller/prog.ForeachArg(0xc001532e60, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:150 +0xd7 fp=0xc00155dac0 sp=0xc00155da78 pc=0x550c97
github.com/google/syzkaller/prog.(*execContext).writeCopyin(...)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:153
github.com/google/syzkaller/prog.(*execContext).serializeCall(0xc00155db70, 0xc001532e60)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:88 +0x47 fp=0xc00155db40 sp=0xc00155dac0 pc=0x562387
github.com/google/syzkaller/prog.(*Prog).SerializeForExec(0xc001530d40, {0x7f4618f6c000, 0x400000, 0x400000})
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:76 +0x155 fp=0xc00155dd48 sp=0xc00155db40 pc=0x562235
github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc0002141b0, 0xc0015370b8, 0xc001530d40)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:257 +0x48 fp=0xc00155ddd8 sp=0xc00155dd48 pc=0x995c88
main.(*Context).execute(0xc0012e2e80, 0x0, 0xc0002141b0, 0xc001530d40, 0xb4)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:181 +0x153 fp=0xc00155df30 sp=0xc00155ddd8 pc=0x99c953
main.(*Context).run(0xc0012e2e80, 0x0)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:166 +0xbb fp=0xc00155dfa0 sp=0xc00155df30 pc=0x99c6db
main.main.func3()
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:127 +0x51 fp=0xc00155dfe0 sp=0xc00155dfa0 pc=0x99c4f1
runtime.goexit({})
	/usr/local/go/src/runtime/asm_amd64.s:1695 +0x1 fp=0xc00155dfe8 sp=0xc00155dfe0 pc=0x472e21
created by main.main in goroutine 1
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:125 +0x5ae

goroutine 1 gp=0xc0000061c0 m=nil [semacquire]:
runtime.gopark(0x8?, 0xc0011bfdd8?, 0xa0?, 0xb7?, 0xc0004db800?)
	/usr/local/go/src/runtime/proc.go:402 +0xce fp=0xc00189fd48 sp=0xc00189fd28 pc=0x43f88e
runtime.goparkunlock(...)
	/usr/local/go/src/runtime/proc.go:408
runtime.semacquire1(0xc0012d1f58, 0x0, 0x1, 0x0, 0x12)
	/usr/local/go/src/runtime/sema.go:160 +0x225 fp=0xc00189fdb0 sp=0xc00189fd48 pc=0x452505
sync.runtime_Semacquire(0x53b52f?)
	/usr/local/go/src/runtime/sema.go:62 +0x25 fp=0xc00189fde8 sp=0xc00189fdb0 pc=0x46ef85
sync.(*WaitGroup).Wait(0xc00043eba0?)
	/usr/local/go/src/sync/waitgroup.go:116 +0x48 fp=0xc00189fe10 sp=0xc00189fde8 pc=0x47f928
main.main()
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:131 +0x645 fp=0xc00189ff50 sp=0xc00189fe10 pc=0x99c365
panic during panic
SIGBUS: bus error
PC=0x45cf22 m=9 sigcode=128 addr=0x0

goroutine 0 gp=0xc001562fc0 m=9 mp=0xc001560808 [idle]:
runtime.pcvalue({0x436?, 0xc001335900?}, 0x18bf6, 0x466750?, 0x0)
	/usr/local/go/src/runtime/symtab.go:912 +0x1c2 fp=0xc0013358c0 sp=0xc0013357f0 pc=0x45cf22
runtime.funcline1({0xc001335c60?, 0xc001335998?}, 0x43f45c, 0x0)
	/usr/local/go/src/runtime/symtab.go:1018 +0x65 fp=0xc001335910 sp=0xc0013358c0 pc=0x45d665
runtime.(*inlineUnwinder).fileLine(...)
	/usr/local/go/src/runtime/symtabinl.go:113
runtime.traceback2(0xc001335c60, 0x0, 0x0, 0x2b)
	/usr/local/go/src/runtime/traceback.go:999 +0x449 fp=0xc001335b70 sp=0xc001335910 pc=0x465b69
runtime.traceback1.func1(0x0)
	/usr/local/go/src/runtime/traceback.go:917 +0x66 fp=0xc001335c38 sp=0xc001335b70 pc=0x4655e6
runtime.traceback1(0xc0000061c0?, 0x0?, 0x0?, 0xc0000061c0, 0xb0?)
	/usr/local/go/src/runtime/traceback.go:940 +0x20f fp=0xc001335e40 sp=0xc001335c38 pc=0x46544f
runtime.traceback(...)
	/usr/local/go/src/runtime/traceback.go:817
runtime.tracebackothers.func1(0xc0000061c0)
	/usr/local/go/src/runtime/traceback.go:1259 +0xe5 fp=0xc001335e80 sp=0xc001335e40 pc=0x466ec5
runtime.forEachGRace(0xc001335ee8)
	/usr/local/go/src/runtime/proc.go:677 +0x49 fp=0xc001335eb0 sp=0xc001335e80 pc=0x440489
runtime.tracebackothers(0xc000f38a80?)
	/usr/local/go/src/runtime/traceback.go:1245 +0xdb fp=0xc001335f18 sp=0xc001335eb0 pc=0x466dbb
runtime.dopanic_m(0xc000f38a80, 0x43c99c, 0xc00155c818)
	/usr/local/go/src/runtime/panic.go:1345 +0x29e fp=0xc001335f88 sp=0xc001335f18 pc=0x43d45e
runtime.fatalthrow.func1()
	/usr/local/go/src/runtime/panic.go:1199 +0x6b fp=0xc001335fc8 sp=0xc001335f88 pc=0x43ce8b
runtime.systemstack(0x0)
	/usr/local/go/src/runtime/asm_amd64.s:509 +0x4a fp=0xc001335fd8 sp=0xc001335fc8 pc=0x470fea

goroutine 23 gp=0xc000f38a80 m=9 mp=0xc001560808 [running]:
runtime.systemstack_switch()
	/usr/local/go/src/runtime/asm_amd64.s:474 +0x8 fp=0xc00155c7d8 sp=0xc00155c7c8 pc=0x470f88
runtime.fatalthrow(0x155c820?)
	/usr/local/go/src/runtime/panic.go:1192 +0x65 fp=0xc00155c818 sp=0xc00155c7d8 pc=0x43cde5
runtime.throw({0xb25c7b?, 0x562965?})
	/usr/local/go/src/runtime/panic.go:1023 +0x5c fp=0xc00155c848 sp=0xc00155c818 pc=0x43c99c
runtime.sigpanic()
	/usr/local/go/src/runtime/signal_unix.go:878 +0x116 fp=0xc00155c8a8 sp=0xc00155c848 pc=0x4550b6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d4e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:182 +0x51f fp=0xc00155ca70 sp=0xc00155c8a8 pc=0x5511ff
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d580}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155cc38 sp=0xc00155ca70 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5a0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155ce00 sp=0xc00155cc38 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7940, 0xc001524ea0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:203 +0x454 fp=0xc00155cfc8 sp=0xc00155ce00 pc=0x551134
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5c0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d190 sp=0xc00155cfc8 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d5e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d358 sp=0xc00155d190 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d6a0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d520 sp=0xc00155d358 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7900, 0xc001524ed0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:200 +0x429 fp=0xc00155d6e8 sp=0xc00155d520 pc=0x551109
github.com/google/syzkaller/prog.foreachArgImpl({0xdc79c0, 0xc00151d6e0}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:181 +0x516 fp=0xc00155d8b0 sp=0xc00155d6e8 pc=0x5511f6
github.com/google/syzkaller/prog.foreachArgImpl({0xdc7900, 0xc001524f60}, 0xc0001580a0, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:200 +0x429 fp=0xc00155da78 sp=0xc00155d8b0 pc=0x551109
github.com/google/syzkaller/prog.ForeachArg(0xc001532e60, 0xc00155db20)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/analysis.go:150 +0xd7 fp=0xc00155dac0 sp=0xc00155da78 pc=0x550c97
github.com/google/syzkaller/prog.(*execContext).writeCopyin(...)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:153
github.com/google/syzkaller/prog.(*execContext).serializeCall(0xc00155db70, 0xc001532e60)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:88 +0x47 fp=0xc00155db40 sp=0xc00155dac0 pc=0x562387
github.com/google/syzkaller/prog.(*Prog).SerializeForExec(0xc001530d40, {0x7f4618f6c000, 0x400000, 0x400000})
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:76 +0x155 fp=0xc00155dd48 sp=0xc00155db40 pc=0x562235
github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc0002141b0, 0xc0015370b8, 0xc001530d40)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:257 +0x48 fp=0xc00155ddd8 sp=0xc00155dd48 pc=0x995c88
main.(*Context).execute(0xc0012e2e80, 0x0, 0xc0002141b0, 0xc001530d40, 0xb4)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:181 +0x153 fp=0xc00155df30 sp=0xc00155ddd8 pc=0x99c953
main.(*Context).run(0xc0012e2e80, 0x0)
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:166 +0xbb fp=0xc00155dfa0 sp=0xc00155df30 pc=0x99c6db
main.main.func3()
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:127 +0x51 fp=0xc00155dfe0 sp=0xc00155dfa0 pc=0x99c4f1
runtime.goexit({})
	/usr/local/go/src/runtime/asm_amd64.s:1695 +0x1 fp=0xc00155dfe8 sp=0xc00155dfe0 pc=0x472e21
created by main.main in goroutine 1
	/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:125 +0x5ae

goroutine 1 gp=0xc0000061c0 m=nil [semacquire]:
runtime.gopark(0x8?, 0xc0011bfdd8?, 0xa0?, 0xb7?, 0xc0004db800?)
	/usr/local/go/src/runtime/proc.go:402 +0xce fp=0xc00189fd48 sp=0xc00189fd28 pc=0x43f88e
runtime.goparkunlock(...)
	/usr/local/go/src/runtime/proc.go:408
runtime.semacquire1(0xc0012d1f58, 0x0, 0x1, 0x0, 0x12)
	/usr/local/go/src/runtime/sema.go:160 +0x225 fp=0xc00189fdb0 sp=0xc00189fd48 pc=0x452505
sync.runtime_Semacquire(0x53b52f?)
	/usr/local/go/src/runtime/sema.go:62 +0x25 fp=0xc00189fde8 sp=0xc00189fdb0 pc=0x46ef85
sync.(*WaitGroup).Wait(0xc00043eba0?)
	/usr/local/go/src/sync/waitgroup.go:116 +0x48 fp=0xc00189fe10 sp=0xc00189fde8 pc=0x47f928
Connection to 10.128.10.32 closed by remote host.