program:
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi0\x00', 0x2040, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000200)={'pcl726\x00', [0x4f0, 0x9e, 0x5, 0x4, 0x6, 0x200, 0x0, 0x9, 0xd7, 0x7, 0x3, 0x8, 0xfffffffe, 0xf408, 0x3, 0x0, 0xa, 0x3, 0x4, 0x8, 0x79b, 0x35, 0x9, 0xa7b1, 0x0, 0x9, 0x7, 0x8f7f, 0x4d, 0x9, 0x7]})
ioctl$COMEDI_SUBDINFO(r0, 0x80486402, &(0x7f0000000080))
[ 75.713758][ T5336] Bluetooth: hci0: command tx timeout
[ 75.746275][ T5356] ------------[ cut here ]------------
[ 75.748471][ T5356] UBSAN: shift-out-of-bounds in drivers/comedi/drivers/pcl726.c:331:46
[ 75.758146][ T5356] shift exponent 158 is too large for 32-bit type 'int'
[ 75.762864][ T5356] CPU: 0 UID: 0 PID: 5356 Comm: syz.0.0 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full)
[ 75.762882][ T5356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.762890][ T5356] Call Trace:
[ 75.762895][ T5356]
[ 75.762901][ T5356] dump_stack_lvl+0x189/0x250
[ 75.762992][ T5356] ? __pfx_dump_stack_lvl+0x10/0x10
[ 75.763006][ T5356] ? __pfx__printk+0x10/0x10
[ 75.763026][ T5356] ubsan_epilogue+0xa/0x40
[ 75.763041][ T5356] __ubsan_handle_shift_out_of_bounds+0x386/0x410
[ 75.763092][ T5356] ? __kmalloc_noprof+0x29b/0x4f0
[ 75.763115][ T5356] pcl726_attach+0xac4/0xd50
[ 75.763163][ T5356] ? rcu_is_watching+0x15/0xb0
[ 75.763177][ T5356] comedi_device_attach+0x51f/0x720
[ 75.763192][ T5356] comedi_unlocked_ioctl+0x5ff/0x1020
[ 75.763213][ T5356] ? rcu_is_watching+0x15/0xb0
[ 75.763224][ T5356] ? lock_release+0x4b/0x3e0
[ 75.763239][ T5356] ? tomoyo_path_number_perm+0x47a/0x5a0
[ 75.763252][ T5356] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 75.763272][ T5356] ? __might_fault+0xb0/0x130
[ 75.763291][ T5356] ? lock_release+0x4b/0x3e0
[ 75.763306][ T5356] ? __fget_files+0x2a/0x420
[ 75.763320][ T5356] ? __fget_files+0x3a0/0x420
[ 75.763334][ T5356] ? __fget_files+0x2a/0x420
[ 75.763348][ T5356] ? bpf_lsm_file_ioctl+0x9/0x20
[ 75.763359][ T5356] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 75.763374][ T5356] __se_sys_ioctl+0xf9/0x170
[ 75.763382][ T5356] do_syscall_64+0xfa/0x3b0
[ 75.763421][ T5356] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.763429][ T5356] ? clear_bhb_loop+0x60/0xb0
[ 75.763438][ T5356] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.763447][ T5356] RIP: 0033:0x7f7da598ebe9
[ 75.763458][ T5356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.763468][ T5356] RSP: 002b:00007f7da6818038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 75.763482][ T5356] RAX: ffffffffffffffda RBX: 00007f7da5bb5fa0 RCX: 00007f7da598ebe9
[ 75.763492][ T5356] RDX: 0000200000000200 RSI: 0000000040946400 RDI: 0000000000000003
[ 75.763500][ T5356] RBP: 00007f7da5a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 75.763508][ T5356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 75.763516][ T5356] R13: 00007f7da5bb6038 R14: 00007f7da5bb5fa0 R15: 00007fffc79c9488
[ 75.763535][ T5356]
[ 75.763539][ T5356] ---[ end trace ]---
[ 75.877828][ T5356] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[ 75.880689][ T5356] CPU: 0 UID: 0 PID: 5356 Comm: syz.0.0 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full)
[ 75.885740][ T5356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.890252][ T5356] Call Trace:
[ 75.891794][ T5356]
[ 75.893162][ T5356] dump_stack_lvl+0x99/0x250
[ 75.895259][ T5356] ? __asan_memcpy+0x40/0x70
[ 75.897304][ T5356] ? __pfx_dump_stack_lvl+0x10/0x10
[ 75.899562][ T5356] ? __pfx__printk+0x10/0x10
[ 75.901650][ T5356] vpanic+0x281/0x750
[ 75.903394][ T5356] ? __pfx_vpanic+0x10/0x10
[ 75.905430][ T5356] panic+0xb9/0xc0
[ 75.906944][ T5356] ? __pfx_panic+0x10/0x10
[ 75.908892][ T5356] ? __pfx__printk+0x10/0x10
[ 75.910926][ T5356] check_panic_on_warn+0x89/0xb0
[ 75.913108][ T5356] __ubsan_handle_shift_out_of_bounds+0x386/0x410
[ 75.915620][ T5356] ? __kmalloc_noprof+0x29b/0x4f0
[ 75.917721][ T5356] pcl726_attach+0xac4/0xd50
[ 75.919757][ T5356] ? rcu_is_watching+0x15/0xb0
[ 75.921693][ T5356] comedi_device_attach+0x51f/0x720
[ 75.924010][ T5356] comedi_unlocked_ioctl+0x5ff/0x1020
[ 75.926189][ T5356] ? rcu_is_watching+0x15/0xb0
[ 75.928354][ T5356] ? lock_release+0x4b/0x3e0
[ 75.930247][ T5356] ? tomoyo_path_number_perm+0x47a/0x5a0
[ 75.932638][ T5356] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 75.935339][ T5356] ? __might_fault+0xb0/0x130
[ 75.937227][ T5356] ? lock_release+0x4b/0x3e0
[ 75.939033][ T5356] ? __fget_files+0x2a/0x420
[ 75.940896][ T5356] ? __fget_files+0x3a0/0x420
[ 75.942849][ T5356] ? __fget_files+0x2a/0x420
[ 75.944751][ T5356] ? bpf_lsm_file_ioctl+0x9/0x20
[ 75.946836][ T5356] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 75.949190][ T5356] __se_sys_ioctl+0xf9/0x170
[ 75.951125][ T5356] do_syscall_64+0xfa/0x3b0
[ 75.953137][ T5356] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.955766][ T5356] ? clear_bhb_loop+0x60/0xb0
[ 75.957621][ T5356] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.959978][ T5356] RIP: 0033:0x7f7da598ebe9
[ 75.961658][ T5356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.969026][ T5356] RSP: 002b:00007f7da6818038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 75.972324][ T5356] RAX: ffffffffffffffda RBX: 00007f7da5bb5fa0 RCX: 00007f7da598ebe9
[ 75.975794][ T5356] RDX: 0000200000000200 RSI: 0000000040946400 RDI: 0000000000000003
[ 75.978923][ T5356] RBP: 00007f7da5a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 75.982448][ T5356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 75.985947][ T5356] R13: 00007f7da5bb6038 R14: 00007f7da5bb5fa0 R15: 00007fffc79c9488
[ 75.989146][ T5356]
[ 75.990822][ T5356] Kernel Offset: disabled
[ 75.992645][ T5356] Rebooting in 86400 seconds..