program:
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2000, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000200)={'pcl726\x00', [0x4f0, 0x20, 0x2, 0x6, 0x6, 0x1ff, 0x0, 0x9, 0xd7, 0x7, 0x3, 0x8, 0xfffffffe, 0xf408, 0x3, 0x0, 0xa, 0x5, 0x4, 0x8, 0x79b, 0x35, 0x9, 0xa7b1, 0x0, 0x9, 0x7, 0xf7f, 0x4d, 0x9, 0x7]})

[   75.665753][ T4689] Bluetooth: hci0: command tx timeout
[   75.731848][ T5340] ------------[ cut here ]------------
[   75.734421][ T5340] UBSAN: shift-out-of-bounds in drivers/comedi/drivers/pcl726.c:331:46
[   75.737609][ T5340] shift exponent 32 is too large for 32-bit type 'int'
[   75.753638][ T5340] CPU: 0 UID: 0 PID: 5340 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00286-gc435a4f487e8 #0 PREEMPT(full) 
[   75.753659][ T5340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.753666][ T5340] Call Trace:
[   75.753672][ T5340]  <TASK>
[   75.753677][ T5340]  dump_stack_lvl+0x189/0x250
[   75.753777][ T5340]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.753791][ T5340]  ? __pfx__printk+0x10/0x10
[   75.753817][ T5340]  ubsan_epilogue+0xa/0x40
[   75.753831][ T5340]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   75.753880][ T5340]  ? __kmalloc_noprof+0x29b/0x4f0
[   75.753902][ T5340]  pcl726_attach+0xac4/0xd50
[   75.753948][ T5340]  comedi_device_attach+0x51d/0x670
[   75.753966][ T5340]  comedi_unlocked_ioctl+0x686/0xf40
[   75.753989][ T5340]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   75.754023][ T5340]  ? __lock_acquire+0xab9/0xd20
[   75.754050][ T5340]  ? __fget_files+0x2a/0x420
[   75.754065][ T5340]  ? __fget_files+0x2a/0x420
[   75.754079][ T5340]  ? __fget_files+0x3a0/0x420
[   75.754092][ T5340]  ? __fget_files+0x2a/0x420
[   75.754109][ T5340]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.754121][ T5340]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   75.754136][ T5340]  __se_sys_ioctl+0xf9/0x170
[   75.754159][ T5340]  do_syscall_64+0xfa/0x3b0
[   75.754201][ T5340]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.754212][ T5340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.754223][ T5340]  ? clear_bhb_loop+0x60/0xb0
[   75.754237][ T5340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.754247][ T5340] RIP: 0033:0x7f8e1bf8e929
[   75.754258][ T5340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.754265][ T5340] RSP: 002b:00007f8e1cd1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.754278][ T5340] RAX: ffffffffffffffda RBX: 00007f8e1c1b5fa0 RCX: 00007f8e1bf8e929
[   75.754287][ T5340] RDX: 0000200000000200 RSI: 0000000040946400 RDI: 0000000000000003
[   75.754294][ T5340] RBP: 00007f8e1c010b39 R08: 0000000000000000 R09: 0000000000000000
[   75.754302][ T5340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.754308][ T5340] R13: 0000000000000000 R14: 00007f8e1c1b5fa0 R15: 00007ffff831da38
[   75.754325][ T5340]  </TASK>
[   75.754330][ T5340] ---[ end trace ]---
[   75.869842][ T5340] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   75.873053][ T5340] CPU: 0 UID: 0 PID: 5340 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00286-gc435a4f487e8 #0 PREEMPT(full) 
[   75.877973][ T5340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.882540][ T5340] Call Trace:
[   75.884057][ T5340]  <TASK>
[   75.885383][ T5340]  dump_stack_lvl+0x99/0x250
[   75.887440][ T5340]  ? __asan_memcpy+0x40/0x70
[   75.889550][ T5340]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.891780][ T5340]  ? __pfx__printk+0x10/0x10
[   75.893648][ T5340]  panic+0x2db/0x790
[   75.895164][ T5340]  ? __pfx_panic+0x10/0x10
[   75.896836][ T5340]  ? _printk+0xcf/0x120
[   75.898371][ T5340]  ? __pfx__printk+0x10/0x10
[   75.900112][ T5340]  check_panic_on_warn+0x89/0xb0
[   75.902167][ T5340]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   75.904893][ T5340]  ? __kmalloc_noprof+0x29b/0x4f0
[   75.907003][ T5340]  pcl726_attach+0xac4/0xd50
[   75.909101][ T5340]  comedi_device_attach+0x51d/0x670
[   75.911369][ T5340]  comedi_unlocked_ioctl+0x686/0xf40
[   75.913647][ T5340]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   75.916215][ T5340]  ? __lock_acquire+0xab9/0xd20
[   75.918338][ T5340]  ? __fget_files+0x2a/0x420
[   75.920227][ T5340]  ? __fget_files+0x2a/0x420
[   75.922311][ T5340]  ? __fget_files+0x3a0/0x420
[   75.924592][ T5340]  ? __fget_files+0x2a/0x420
[   75.926790][ T5340]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.928978][ T5340]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   75.931338][ T5340]  __se_sys_ioctl+0xf9/0x170
[   75.933462][ T5340]  do_syscall_64+0xfa/0x3b0
[   75.935381][ T5340]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.937545][ T5340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.939896][ T5340]  ? clear_bhb_loop+0x60/0xb0
[   75.941728][ T5340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.944211][ T5340] RIP: 0033:0x7f8e1bf8e929
[   75.946112][ T5340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.954221][ T5340] RSP: 002b:00007f8e1cd1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.957563][ T5340] RAX: ffffffffffffffda RBX: 00007f8e1c1b5fa0 RCX: 00007f8e1bf8e929
[   75.960779][ T5340] RDX: 0000200000000200 RSI: 0000000040946400 RDI: 0000000000000003
[   75.964157][ T5340] RBP: 00007f8e1c010b39 R08: 0000000000000000 R09: 0000000000000000
[   75.967645][ T5340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.971005][ T5340] R13: 0000000000000000 R14: 00007f8e1c1b5fa0 R15: 00007ffff831da38
[   75.974360][ T5340]  </TASK>
[   75.976059][ T5340] Kernel Offset: disabled
[   75.977961][ T5340] Rebooting in 86400 seconds..