=====================================================
BUG: KMSAN: use-after-free in kernfs_leftmost_descendant fs/kernfs/dir.c:1261 [inline]
BUG: KMSAN: use-after-free in __kernfs_remove+0x685/0x1240 fs/kernfs/dir.c:1369
 kernfs_leftmost_descendant fs/kernfs/dir.c:1261 [inline]
 __kernfs_remove+0x685/0x1240 fs/kernfs/dir.c:1369
 kernfs_remove_by_name_ns+0x11b/0x1f0 fs/kernfs/dir.c:1589
 kernfs_remove_by_name include/linux/kernfs.h:615 [inline]
 sysfs_remove_link+0x56/0x70 fs/sysfs/symlink.c:152
 sysfs_slab_add+0x1ca/0xbd0 mm/slub.c:5959
 __kmem_cache_create+0xaf/0x460 mm/slub.c:4914
 create_cache mm/slab_common.c:229 [inline]
 kmem_cache_create_usercopy+0x35f/0x9c0 mm/slab_common.c:335
 p9_client_create+0x169d/0x17a0 net/9p/client.c:993
 v9fs_session_init+0x1cd/0x25d0 fs/9p/v9fs.c:408
 v9fs_mount+0xea/0x17e0 fs/9p/vfs_super.c:126
 legacy_get_tree+0x10c/0x280 fs/fs_context.c:610
 vfs_get_tree+0xa1/0x500 fs/super.c:1530
 do_new_mount+0x694/0x1580 fs/namespace.c:3040
 path_mount+0x71a/0x1f00 fs/namespace.c:3370
 do_mount fs/namespace.c:3383 [inline]
 __do_sys_mount fs/namespace.c:3591 [inline]
 __se_sys_mount+0x734/0x840 fs/namespace.c:3568
 __x64_sys_mount+0xe0/0x140 fs/namespace.c:3568
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

Uninit was created at:
 slab_free_hook mm/slub.c:1739 [inline]
 slab_free_freelist_hook+0x1b8/0x650 mm/slub.c:1795
 slab_free mm/slub.c:3549 [inline]
 kmem_cache_free+0x2cc/0x9c0 mm/slub.c:3566
 kernfs_put+0x5e4/0x930 fs/kernfs/dir.c:547
 __kernfs_remove+0xe06/0x1240 fs/kernfs/dir.c:1407
 kernfs_remove_by_name_ns+0x11b/0x1f0 fs/kernfs/dir.c:1589
 kernfs_remove_by_name include/linux/kernfs.h:615 [inline]
 sysfs_remove_link+0x56/0x70 fs/sysfs/symlink.c:152
 sysfs_slab_add+0x1ca/0xbd0 mm/slub.c:5959
 __kmem_cache_create+0xaf/0x460 mm/slub.c:4914
 create_cache mm/slab_common.c:229 [inline]
 kmem_cache_create_usercopy+0x35f/0x9c0 mm/slab_common.c:335
 p9_client_create+0x169d/0x17a0 net/9p/client.c:993
 v9fs_session_init+0x1cd/0x25d0 fs/9p/v9fs.c:408
 v9fs_mount+0xea/0x17e0 fs/9p/vfs_super.c:126
 legacy_get_tree+0x10c/0x280 fs/fs_context.c:610
 vfs_get_tree+0xa1/0x500 fs/super.c:1530
 do_new_mount+0x694/0x1580 fs/namespace.c:3040
 path_mount+0x71a/0x1f00 fs/namespace.c:3370
 do_mount fs/namespace.c:3383 [inline]
 __do_sys_mount fs/namespace.c:3591 [inline]
 __se_sys_mount+0x734/0x840 fs/namespace.c:3568
 __x64_sys_mount+0xe0/0x140 fs/namespace.c:3568
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

CPU: 1 PID: 8272 Comm: syz-executor804 Not tainted 6.0.0-rc5-syzkaller-00051-g523d2ce66d07 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
=====================================================