Merge pull request #9833 from wainersm/qemu-rs_tests

tests/k8s: run for qemu-runtime-rs on AKS
Merge pull request #9861 from zvonkok/release-3.6.0
2026-03-02 10:42:10 +00:00 · 2024-06-17 16:59:46 -03:00 · 2024-06-17 20:35:29 +02:00 · 2024-06-17 15:21:25 -03:00 · 2024-06-17 15:13:25 -03:00 · 2024-06-17 16:23:39 +01:00
1791 changed files with 170300 additions and 150342 deletions
--- a/.github/actionlint.yaml
+++ b/.github/actionlint.yaml
@@ -0,0 +1,24 @@
+# Copyright (c) 2024 Red Hat
+#
+# SPDX-License-Identifier: Apache-2.0
+#
+# Configuration file with rules for the actionlint tool.
+#
+self-hosted-runner:
+  # Labels of self-hosted runner that linter should ignore
+  labels:
+    - arm64-builder
+    - garm-ubuntu-2004
+    - garm-ubuntu-2004-smaller
+    - garm-ubuntu-2204
+    - garm-ubuntu-2304
+    - garm-ubuntu-2304-smaller
+    - garm-ubuntu-2204-smaller
+    - k8s-ppc64le
+    - metrics
+    - ppc64le
+    - sev
+    - sev-snp
+    - s390x
+    - s390x-large
+    - tdx
--- a/.github/workflows/basic-ci-amd64.yaml
+++ b/.github/workflows/basic-ci-amd64.yaml
@@ -22,7 +22,7 @@ jobs:
      fail-fast: false
      matrix:
        containerd_version: ['lts', 'active']
-        vmm: ['clh', 'dragonball', 'qemu', 'stratovirt', 'cloud-hypervisor']
+        vmm: ['clh', 'dragonball', 'qemu', 'stratovirt', 'cloud-hypervisor', 'qemu-runtime-rs']
    runs-on: garm-ubuntu-2204-smaller
    env:
      CONTAINERD_VERSION: ${{ matrix.containerd_version }}
@@ -44,7 +44,7 @@ jobs:
        run: bash tests/integration/cri-containerd/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -83,7 +83,7 @@ jobs:
        run: bash tests/stability/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -125,7 +125,7 @@ jobs:
        run: bash tests/integration/nydus/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -157,7 +157,7 @@ jobs:
        run: bash tests/integration/runk/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -176,6 +176,8 @@ jobs:
        vmm:
          - clh # cloud-hypervisor
          - qemu
+    # TODO: enable me when https://github.com/kata-containers/kata-containers/issues/9763 is fixed
+    if: false
    runs-on: garm-ubuntu-2204-smaller
    env:
      KATA_HYPERVISOR: ${{ matrix.vmm }}
@@ -195,7 +197,7 @@ jobs:
        run: bash tests/functional/tracing/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -211,7 +213,12 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        vmm: ['clh', 'qemu']
+        vmm:
+          - clh
+          - qemu
+        exclude:
+          # TODO: enable with clh when https://github.com/kata-containers/kata-containers/issues/9764 is fixed
+          - vmm: clh
    runs-on: garm-ubuntu-2304
    env:
      GOPATH: ${{ github.workspace }}
@@ -232,7 +239,7 @@ jobs:
        run: bash tests/functional/vfio/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -270,7 +277,7 @@ jobs:
        run: bash tests/integration/docker/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -313,7 +320,7 @@ jobs:
        run: bash tests/integration/nerdctl/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -329,7 +336,7 @@ jobs:
        run: bash tests/integration/nerdctl/gha-run.sh collect-artifacts

      - name: Archive artifacts ${{ matrix.vmm }}
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: nerdctl-tests-garm-${{ matrix.vmm }}
          path: /tmp/artifacts
--- a/.github/workflows/build-checks.yaml
+++ b/.github/workflows/build-checks.yaml
@@ -55,7 +55,7 @@ jobs:
      - name: Adjust a permission for repo
        run: |
          sudo chown -R $USER:$USER $GITHUB_WORKSPACE $HOME
-          sudo rm -rf $GITHUB_WORKSPACE/*
+          sudo rm -rf $GITHUB_WORKSPACE/* && echo "GITHUB_WORKSPACE removed" || { sleep 10 && sudo rm -rf $GITHUB_WORKSPACE/*; }
          sudo rm -f /tmp/kata_hybrid*  # Sometime we got leftover from test_setup_hvsock_failed()
        if: ${{ inputs.instance != 'ubuntu-20.04' }}

@@ -95,7 +95,7 @@ jobs:
          echo "LIBSECCOMP_LINK_TYPE=static" >> $GITHUB_ENV
          echo "LIBSECCOMP_LIB_PATH=${libseccomp_install_dir}/lib" >> $GITHUB_ENV
      - name: Install protobuf-compiler
-        if: ${{ matrix.command != 'make vendor' && (matrix.component == 'agent' || matrix.component == 'runk') }}
+        if: ${{ matrix.command != 'make vendor' && (matrix.component == 'agent' || matrix.component == 'runk' || matrix.component == 'genpolicy') }}
        run: sudo apt-get -y install protobuf-compiler
      - name: Install clang
        if: ${{ matrix.command == 'make check' && matrix.component == 'agent' }}
@@ -111,3 +111,4 @@ jobs:
          ${{ matrix.command }}
        env:
          RUST_BACKTRACE: "1"
+          SKIP_GO_VERSION_CHECK: "1"
--- a/.github/workflows/build-kata-static-tarball-amd64.yaml
+++ b/.github/workflows/build-kata-static-tarball-amd64.yaml
@@ -28,7 +28,6 @@ jobs:
      matrix:
        asset:
          - agent
-          - agent-opa
          - agent-ctl
          - cloud-hypervisor
          - cloud-hypervisor-glibc
@@ -48,7 +47,6 @@ jobs:
          - pause-image
          - qemu
          - qemu-snp-experimental
-          - qemu-tdx-experimental
          - stratovirt
          - rootfs-image
          - rootfs-image-confidential
@@ -57,26 +55,17 @@ jobs:
          - rootfs-initrd-mariner
          - runk
          - shim-v2
-          - tdvf
          - trace-forwarder
          - virtiofsd
        stage:
          - ${{ inputs.stage }}
        exclude:
-          - asset: agent
-            stage: release
-          - asset: agent-opa
-            stage: release
          - asset: cloud-hypervisor-glibc
            stage: release
-          - asset: pause-image
-            stage: release
-          - asset: coco-guest-components
-            stage: release
    steps:
      - name: Login to Kata Containers quay.io
        if: ${{ inputs.push-to-registry == 'yes' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -98,7 +87,7 @@ jobs:
          make "${KATA_ASSET}-tarball"
          build_dir=$(readlink -f build)
          # store-artifact does not work with symlink
-          sudo cp -r "${build_dir}" "kata-build"
+          mkdir -p kata-build && cp "${build_dir}"/kata-static-${KATA_ASSET}*.tar.* kata-build/.
        env:
          KATA_ASSET: ${{ matrix.asset }}
          TAR_OUTPUT: ${{ matrix.asset }}.tar.gz
@@ -107,11 +96,13 @@ jobs:
          ARTEFACT_REGISTRY_USERNAME: ${{ github.actor }}
          ARTEFACT_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
          TARGET_BRANCH: ${{ inputs.target-branch }}
+          RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }}

      - name: store-artifact ${{ matrix.asset }}
-        uses: actions/upload-artifact@v3
+        if: ${{ matrix.stage != 'release' || (matrix.asset != 'agent' && matrix.asset != 'coco-guest-components' && matrix.asset != 'pause-image') }}
+        uses: actions/upload-artifact@v4
        with:
-          name: kata-artifacts-amd64${{ inputs.tarball-suffix }}
+          name: kata-artifacts-amd64-${{ matrix.asset }}${{ inputs.tarball-suffix }}
          path: kata-build/kata-static-${{ matrix.asset }}.tar.xz
          retention-days: 15
          if-no-files-found: error
@@ -130,15 +121,16 @@ jobs:
        env:
          TARGET_BRANCH: ${{ inputs.target-branch }}
      - name: get-artifacts
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
-          name: kata-artifacts-amd64${{ inputs.tarball-suffix }}
+          pattern: kata-artifacts-amd64-*${{ inputs.tarball-suffix }}
          path: kata-artifacts
+          merge-multiple: true
      - name: merge-artifacts
        run: |
          ./tools/packaging/kata-deploy/local-build/kata-deploy-merge-builds.sh kata-artifacts versions.yaml
      - name: store-artifacts
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-static.tar.xz
--- a/.github/workflows/build-kata-static-tarball-arm64.yaml
+++ b/.github/workflows/build-kata-static-tarball-arm64.yaml
@@ -39,8 +39,6 @@ jobs:
          - rootfs-initrd
          - shim-v2
          - virtiofsd
-        stage:
-          - ${{ inputs.stage }}
    steps:
      - name: Adjust a permission for repo
        run: |
@@ -48,7 +46,7 @@ jobs:

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.push-to-registry == 'yes' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -79,11 +77,13 @@ jobs:
          ARTEFACT_REGISTRY_USERNAME: ${{ github.actor }}
          ARTEFACT_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
          TARGET_BRANCH: ${{ inputs.target-branch }}
+          RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }}

      - name: store-artifact ${{ matrix.asset }}
-        uses: actions/upload-artifact@v3
+        if: ${{ inputs.stage != 'release' || matrix.asset != 'agent' }}
+        uses: actions/upload-artifact@v4
        with:
-          name: kata-artifacts-arm64${{ inputs.tarball-suffix }}
+          name: kata-artifacts-arm64-${{ matrix.asset }}${{ inputs.tarball-suffix }}
          path: kata-build/kata-static-${{ matrix.asset }}.tar.xz
          retention-days: 15
          if-no-files-found: error
@@ -106,15 +106,16 @@ jobs:
        env:
          TARGET_BRANCH: ${{ inputs.target-branch }}
      - name: get-artifacts
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
-          name: kata-artifacts-arm64${{ inputs.tarball-suffix }}
+          pattern: kata-artifacts-arm64-*${{ inputs.tarball-suffix }}
          path: kata-artifacts
+          merge-multiple: true
      - name: merge-artifacts
        run: |
          ./tools/packaging/kata-deploy/local-build/kata-deploy-merge-builds.sh kata-artifacts versions.yaml
      - name: store-artifacts
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: kata-static-tarball-arm64${{ inputs.tarball-suffix }}
          path: kata-static.tar.xz
--- a/.github/workflows/build-kata-static-tarball-ppc64le.yaml
+++ b/.github/workflows/build-kata-static-tarball-ppc64le.yaml
@@ -39,7 +39,7 @@ jobs:
      - name: Adjust a permission for repo
        run: |
          sudo chown -R $USER:$USER $GITHUB_WORKSPACE
-      
+
      - name: Prepare the self-hosted runner
        run: |
            ${HOME}/scripts/prepare_runner.sh
@@ -48,7 +48,7 @@ jobs:

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.push-to-registry == 'yes' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -80,11 +80,13 @@ jobs:
          ARTEFACT_REGISTRY_USERNAME: ${{ github.actor }}
          ARTEFACT_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
          TARGET_BRANCH: ${{ inputs.target-branch }}
+          RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }}

      - name: store-artifact ${{ matrix.asset }}
-        uses: actions/upload-artifact@v3
+        if: ${{ inputs.stage != 'release' || matrix.asset != 'agent' }}
+        uses: actions/upload-artifact@v4
        with:
-          name: kata-artifacts-ppc64le${{ inputs.tarball-suffix }}
+          name: kata-artifacts-ppc64le-${{ matrix.asset }}${{ inputs.tarball-suffix }}
          path: kata-build/kata-static-${{ matrix.asset }}.tar.xz
          retention-days: 1
          if-no-files-found: error
@@ -107,15 +109,16 @@ jobs:
        env:
          TARGET_BRANCH: ${{ inputs.target-branch }}
      - name: get-artifacts
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
-          name: kata-artifacts-ppc64le${{ inputs.tarball-suffix }}
+          pattern: kata-artifacts-ppc64le-*${{ inputs.tarball-suffix }}
          path: kata-artifacts
+          merge-multiple: true
      - name: merge-artifacts
        run: |
          ./tools/packaging/kata-deploy/local-build/kata-deploy-merge-builds.sh kata-artifacts versions.yaml
      - name: store-artifacts
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: kata-static-tarball-ppc64le${{ inputs.tarball-suffix }}
          path: kata-static.tar.xz
--- a/.github/workflows/build-kata-static-tarball-s390x.yaml
+++ b/.github/workflows/build-kata-static-tarball-s390x.yaml
@@ -30,26 +30,22 @@ jobs:
          - agent
          - coco-guest-components
          - kernel
+          - kernel-confidential
          - pause-image
          - qemu
          - rootfs-image
+          - rootfs-image-confidential
          - rootfs-initrd
+          - rootfs-initrd-confidential
          - shim-v2
          - virtiofsd
-        stage:
-          - ${{ inputs.stage }}
-        exclude:
-          - asset: pause-image
-            stage: release
-          - asset: coco-guest-components
-            stage: release
    steps:
      - name: Take a pre-action for self-hosted runner
        run: ${HOME}/script/pre_action.sh ubuntu-2204

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.push-to-registry == 'yes' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -81,11 +77,13 @@ jobs:
          ARTEFACT_REGISTRY_USERNAME: ${{ github.actor }}
          ARTEFACT_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
          TARGET_BRANCH: ${{ inputs.target-branch }}
+          RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }}

      - name: store-artifact ${{ matrix.asset }}
-        uses: actions/upload-artifact@v3
+        if: ${{ inputs.stage != 'release' || (matrix.asset != 'agent' && matrix.asset != 'coco-guest-components' && matrix.asset != 'pause-image') }}
+        uses: actions/upload-artifact@v4
        with:
-          name: kata-artifacts-s390x${{ inputs.tarball-suffix }}
+          name: kata-artifacts-s390x-${{ matrix.asset }}${{ inputs.tarball-suffix }}
          path: kata-build/kata-static-${{ matrix.asset }}.tar.xz
          retention-days: 15
          if-no-files-found: error
@@ -97,13 +95,14 @@ jobs:
      - name: Take a pre-action for self-hosted runner
        run: ${HOME}/script/pre_action.sh ubuntu-2204

-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4

      - name: get-artifacts
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
-          name: kata-artifacts-s390x${{ inputs.tarball-suffix }}
+          pattern: kata-artifacts-s390x-*${{ inputs.tarball-suffix }}
          path: kata-artifacts
+          merge-multiple: true

      - name: Place a host key document
        run: |
@@ -127,7 +126,7 @@ jobs:
          HKD_PATH: "host-key-document"

      - name: store-artifact boot-image-se
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: kata-artifacts-s390x${{ inputs.tarball-suffix }}
          path: kata-build/kata-static-boot-image-se.tar.xz
@@ -151,15 +150,16 @@ jobs:
        env:
          TARGET_BRANCH: ${{ inputs.target-branch }}
      - name: get-artifacts
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
-          name: kata-artifacts-s390x${{ inputs.tarball-suffix }}
+          pattern: kata-artifacts-s390x-*${{ inputs.tarball-suffix }}
          path: kata-artifacts
+          merge-multiple: true
      - name: merge-artifacts
        run: |
          ./tools/packaging/kata-deploy/local-build/kata-deploy-merge-builds.sh kata-artifacts versions.yaml
      - name: store-artifacts
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: kata-static-tarball-s390x${{ inputs.tarball-suffix }}
          path: kata-static.tar.xz
--- a/.github/workflows/ci-nightly-s390x.yaml
+++ b/.github/workflows/ci-nightly-s390x.yaml
@@ -19,25 +19,3 @@ jobs:
        /home/${USER}/script/handle_test_log.sh download $file_name
      env:
        TEST_TITLE: ${{ matrix.test_title }}
-
-  k8s-cri-containerd-rhel9-e2e-tests:
-    runs-on: s390x-rhel9
-    steps:
-    - name: Take a pre-action for self-hosted runner
-      run: |
-        ${HOME}/script/pre_action.sh rhel9-nightly
-
-    - name: Run k8s/cri-containerd e2e tests on RHEL9
-      run: |
-        export WORKSPACE=$GITHUB_WORKSPACE
-        export GITHUB_ACTION=""
-        bash ci_crio_entry_point.sh
-      env:
-        BAREMETAL: "true"
-        REPO_OWNER: "cri-o"
-        REPO_NAME: "cri-o"
-    
-    - name: Take a post-action for self-hosted runner
-      if: always()
-      run: |
-        ${HOME}/script/post_action.sh rhel9-nightly
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -91,20 +91,20 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: Set up QEMU
-        uses: docker/setup-qemu-action@v2
+        uses: docker/setup-qemu-action@v3

      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v2
+        uses: docker/setup-buildx-action@v3

      - name: Login to Kata Containers ghcr.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Docker build and push
-        uses: docker/build-push-action@v4
+        uses: docker/build-push-action@v5
        with:
          tags: ghcr.io/kata-containers/test-images:unencrypted-${{ inputs.pr-number }}
          push: true
@@ -191,6 +191,7 @@ jobs:
      commit-hash: ${{ inputs.commit-hash }}
      pr-number: ${{ inputs.pr-number }}
      target-branch: ${{ inputs.target-branch }}
+    secrets: inherit

  run-k8s-tests-on-zvsi:
    needs: [publish-kata-deploy-payload-s390x, build-and-publish-tee-confidential-unencrypted-image]
--- a/.github/workflows/commit-message-check.yaml
+++ b/.github/workflows/commit-message-check.yaml
@@ -19,6 +19,8 @@ env:
 jobs:
  commit-message-check:
    runs-on: ubuntu-latest
+    env:
+      PR_AUTHOR: ${{ github.event.pull_request.user.login }}
    name: Commit Message Check
    steps:
    - name: Get PR Commits
@@ -47,7 +49,7 @@ jobs:
        commits: ${{ steps.get-pr-commits.outputs.commits }}

    - name: Check Subject Line Length
-      if: ${{ !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
+      if: ${{ (env.PR_AUTHOR != 'dependabot[bot]') && !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
      uses: tim-actions/commit-message-checker-with-regex@v0.3.1
      with:
        commits: ${{ steps.get-pr-commits.outputs.commits }}
@@ -56,7 +58,7 @@ jobs:
        post_error: ${{ env.error_msg }}

    - name: Check Body Line Length
-      if: ${{ !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
+      if: ${{ (env.PR_AUTHOR != 'dependabot[bot]') && !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
      uses: tim-actions/commit-message-checker-with-regex@v0.3.1
      with:
        commits: ${{ steps.get-pr-commits.outputs.commits }}
@@ -86,19 +88,8 @@ jobs:
        error: 'Body line too long (max 150)'
        post_error: ${{ env.error_msg }}

-    - name: Check Fixes
-      if: ${{ !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
-      uses: tim-actions/commit-message-checker-with-regex@v0.3.1
-      with:
-        commits: ${{ steps.get-pr-commits.outputs.commits }}
-        pattern: '\s*Fixes\s*:?\s*(#\d+|github\.com\/kata-containers\/[a-z-.]*#\d+)|^\s*release\s*:'
-        flags: 'i'
-        error: 'No "Fixes" found'
-        post_error: ${{ env.error_msg }}
-        one_pass_all_pass: 'true'
-
    - name: Check Subsystem
-      if: ${{ !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
+      if: ${{ (env.PR_AUTHOR != 'dependabot[bot]') && !contains(github.event.pull_request.labels.*.name, 'force-skip-ci') && ( success() || failure() ) }}
      uses: tim-actions/commit-message-checker-with-regex@v0.3.1
      with:
        commits: ${{ steps.get-pr-commits.outputs.commits }}
--- a/.github/workflows/darwin-tests.yaml
+++ b/.github/workflows/darwin-tests.yaml
@@ -18,7 +18,7 @@ jobs:
    - name: Install Go
      uses: actions/setup-go@v2
      with:
-        go-version: 1.19.3
+        go-version: 1.22.2
    - name: Checkout code
      uses: actions/checkout@v4
    - name: Build utils
--- a/.github/workflows/docs-url-alive-check.yaml
+++ b/.github/workflows/docs-url-alive-check.yaml
@@ -14,7 +14,7 @@ jobs:
    - name: Install Go
      uses: actions/setup-go@v2
      with:
-        go-version: 1.19.3
+        go-version: 1.22.2
      env:
        GOPATH: ${{ runner.workspace }}/kata-containers
    - name: Set env
--- a/.github/workflows/move-issues-to-in-progress.yaml
+++ b/.github/workflows/move-issues-to-in-progress.yaml
@@ -62,11 +62,10 @@ jobs:
            grep -v "^\#"  |\
            cut -d';' -f3 || true)

-          # PR doesn't have any linked issues
-          # (it should, but maybe a new user forgot to add a "Fixes: #XXX" commit).
+          # PR doesn't have any linked issues, handle it only if it exists
          [ -z "$linked_issue_urls" ] && {
-            echo "::error::No linked issues for PR $pr"
-            exit 1
+            echo "::warning::No linked issues for PR $pr"
+            exit 0
          }

          project_name="Issue backlog"
--- a/.github/workflows/payload-after-push.yaml
+++ b/.github/workflows/payload-after-push.yaml
@@ -93,7 +93,7 @@ jobs:
        uses: actions/checkout@v4

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
--- a/.github/workflows/publish-kata-deploy-payload-amd64.yaml
+++ b/.github/workflows/publish-kata-deploy-payload-amd64.yaml
@@ -38,13 +38,13 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.registry == 'quay.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -52,7 +52,7 @@ jobs:

      - name: Login to Kata Containers ghcr.io
        if: ${{ inputs.registry == 'ghcr.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
--- a/.github/workflows/publish-kata-deploy-payload-arm64.yaml
+++ b/.github/workflows/publish-kata-deploy-payload-arm64.yaml
@@ -42,13 +42,13 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-arm64${{ inputs.tarball-suffix }}

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.registry == 'quay.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -56,7 +56,7 @@ jobs:

      - name: Login to Kata Containers ghcr.io
        if: ${{ inputs.registry == 'ghcr.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
--- a/.github/workflows/publish-kata-deploy-payload-ppc64le.yaml
+++ b/.github/workflows/publish-kata-deploy-payload-ppc64le.yaml
@@ -47,13 +47,13 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-ppc64le${{ inputs.tarball-suffix }}

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.registry == 'quay.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -61,7 +61,7 @@ jobs:

      - name: Login to Kata Containers ghcr.io
        if: ${{ inputs.registry == 'ghcr.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
--- a/.github/workflows/publish-kata-deploy-payload-s390x.yaml
+++ b/.github/workflows/publish-kata-deploy-payload-s390x.yaml
@@ -41,13 +41,13 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-s390x${{ inputs.tarball-suffix }}

      - name: Login to Kata Containers quay.io
        if: ${{ inputs.registry == 'quay.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -55,7 +55,7 @@ jobs:

      - name: Login to Kata Containers ghcr.io
        if: ${{ inputs.registry == 'ghcr.io' }}
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
--- a/.github/workflows/release-amd64.yaml
+++ b/.github/workflows/release-amd64.yaml
@@ -10,20 +10,22 @@ jobs:
  build-kata-static-tarball-amd64:
    uses: ./.github/workflows/build-kata-static-tarball-amd64.yaml
    with:
+      push-to-registry: yes
      stage: release
+    secrets: inherit

  kata-deploy:
    needs: build-kata-static-tarball-amd64
    runs-on: ubuntu-latest
    steps:
      - name: Login to Kata Containers docker.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -31,7 +33,7 @@ jobs:

      - uses: actions/checkout@v4
      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64

--- a/.github/workflows/release-arm64.yaml
+++ b/.github/workflows/release-arm64.yaml
@@ -10,20 +10,22 @@ jobs:
  build-kata-static-tarball-arm64:
    uses: ./.github/workflows/build-kata-static-tarball-arm64.yaml
    with:
+      push-to-registry: yes
      stage: release
+    secrets: inherit

  kata-deploy:
    needs: build-kata-static-tarball-arm64
    runs-on: arm64-builder
    steps:
      - name: Login to Kata Containers docker.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -31,7 +33,7 @@ jobs:

      - uses: actions/checkout@v4
      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-arm64

--- a/.github/workflows/release-ppc64le.yaml
+++ b/.github/workflows/release-ppc64le.yaml
@@ -10,7 +10,9 @@ jobs:
  build-kata-static-tarball-ppc64le:
    uses: ./.github/workflows/build-kata-static-tarball-ppc64le.yaml
    with:
+      push-to-registry: yes
      stage: release
+    secrets: inherit

  kata-deploy:
    needs: build-kata-static-tarball-ppc64le
@@ -22,13 +24,13 @@ jobs:
          sudo rm -rf $GITHUB_WORKSPACE/*

      - name: Login to Kata Containers docker.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -36,7 +38,7 @@ jobs:

      - uses: actions/checkout@v4
      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-ppc64le

--- a/.github/workflows/release-s390x.yaml
+++ b/.github/workflows/release-s390x.yaml
@@ -10,6 +10,7 @@ jobs:
  build-kata-static-tarball-s390x:
    uses: ./.github/workflows/build-kata-static-tarball-s390x.yaml
    with:
+      push-to-registry: yes
      stage: release
    secrets: inherit

@@ -21,13 +22,13 @@ jobs:
        run: ${HOME}/script/pre_action.sh ubuntu-2204

      - name: Login to Kata Containers docker.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -35,7 +36,7 @@ jobs:

      - uses: actions/checkout@v4
      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-s390x

--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -6,16 +6,11 @@ jobs:
  release:
    runs-on: ubuntu-latest
    steps:
-      - name: Checkout code
+      - name: Checkout repository
        uses: actions/checkout@v4
        with:
          fetch-depth: 0

-      - name: Get the new release version
-        run: |
-          release_version=$(./tools/packaging/release/release.sh release-version)
-          echo "RELEASE_VERSION=$release_version" >> "$GITHUB_ENV"
-
      - name: Create a new release
        run: |
          ./tools/packaging/release/release.sh create-new-release
@@ -58,13 +53,13 @@ jobs:
        uses: actions/checkout@v4

      - name: Login to Kata Containers docker.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Login to Kata Containers quay.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
        with:
          registry: quay.io
          username: ${{ secrets.QUAY_DEPLOYER_USERNAME }}
@@ -75,7 +70,7 @@ jobs:
          release_version=$(./tools/packaging/release/release.sh release-version)
          echo "KATA_DEPLOY_IMAGE_TAGS=$release_version latest" >> "$GITHUB_ENV"

-      - name: Push multi-arch manifest
+      - name: Publish multi-arch manifest on docker.io and quay.io
        run: |
          ./tools/packaging/release/release.sh publish-multiarch-manifest
        env:
@@ -85,51 +80,56 @@ jobs:
    needs: [build-and-push-assets-amd64, build-and-push-assets-arm64, build-and-push-assets-s390x, build-and-push-assets-ppc64le]
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - name: Checkout repository
+        uses: actions/checkout@v4

      - name: Set KATA_STATIC_TARBALL env var
        run: |
          tarball=$(pwd)/kata-static.tar.xz
          echo "KATA_STATIC_TARBALL=${tarball}" >> "$GITHUB_ENV"

-      - name: download-artifacts-amd64
-        uses: actions/download-artifact@v3
+      - name: Download amd64 artifacts
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64
-      - name: push amd64 static tarball to github
+
+      - name: Upload amd64 static tarball to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-kata-static-tarball
        env:
          GH_TOKEN: ${{ github.token }}
          ARCHITECTURE: amd64

-      - name: download-artifacts-arm64
-        uses: actions/download-artifact@v3
+      - name: Download arm64 artifacts
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-arm64
-      - name: push arm64 static tarball to github
+
+      - name: Upload arm64 static tarball to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-kata-static-tarball
        env:
          GH_TOKEN: ${{ github.token }}
          ARCHITECTURE: arm64

-      - name: download-artifacts-s390x
-        uses: actions/download-artifact@v3
+      - name: Download s390x artifacts
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-s390x
-      - name: push s390x static tarball to github
+
+      - name: Upload s390x static tarball to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-kata-static-tarball
        env:
          GH_TOKEN: ${{ github.token }}
          ARCHITECTURE: s390x

-      - name: download-artifacts-ppc64le
-        uses: actions/download-artifact@v3
+      - name: Download ppc64le artifacts
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-ppc64le
-      - name: push ppc64le static tarball to github
+
+      - name: Upload ppc64le static tarball to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-kata-static-tarball
        env:
@@ -140,8 +140,10 @@ jobs:
    needs: release
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
-      - name: upload versions.yaml
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Upload versions.yaml to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-versions-yaml-file
        env:
@@ -151,8 +153,10 @@ jobs:
    needs: release
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
-      - name: generate-and-upload-tarball
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Generate and upload vendored code tarball
        run: |
          ./tools/packaging/release/release.sh upload-vendored-code-tarball
        env:
@@ -162,9 +166,24 @@ jobs:
    needs: release
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
-      - name: download-and-upload-tarball
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Download libseccomp tarball and upload it to GitHub
        run: |
          ./tools/packaging/release/release.sh upload-libseccomp-tarball
        env:
          GH_TOKEN: ${{ github.token }}
+
+  publish-release:
+    needs: [ build-and-push-assets-amd64, build-and-push-assets-arm64, build-and-push-assets-s390x, build-and-push-assets-ppc64le, publish-multi-arch-images, upload-multi-arch-static-tarball, upload-versions-yaml, upload-cargo-vendored-tarball, upload-libseccomp-tarball ]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Publish a release
+        run: |
+          ./tools/packaging/release/release.sh publish-release
+        env:
+          GH_TOKEN: ${{ github.token }}
--- a/.github/workflows/run-cri-containerd-tests-ppc64le.yaml
+++ b/.github/workflows/run-cri-containerd-tests-ppc64le.yaml
@@ -52,7 +52,7 @@ jobs:
        run: bash tests/integration/cri-containerd/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-ppc64le${{ inputs.tarball-suffix }}
          path: kata-artifacts
--- a/.github/workflows/run-cri-containerd-tests-s390x.yaml
+++ b/.github/workflows/run-cri-containerd-tests-s390x.yaml
@@ -22,8 +22,8 @@ jobs:
      fail-fast: false
      matrix:
        containerd_version: ['active']
-        vmm: ['qemu']
-    runs-on: s390x
+        vmm: ['qemu', 'qemu-runtime-rs']
+    runs-on: s390x-large
    env:
      CONTAINERD_VERSION: ${{ matrix.containerd_version }}
      GOPATH: ${{ github.workspace }}
@@ -47,7 +47,7 @@ jobs:
        run: bash tests/integration/cri-containerd/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-s390x${{ inputs.tarball-suffix }}
          path: kata-artifacts
--- a/.github/workflows/run-k8s-tests-on-aks.yaml
+++ b/.github/workflows/run-k8s-tests-on-aks.yaml
@@ -36,6 +36,7 @@ jobs:
          - clh
          - dragonball
          - qemu
+          - qemu-runtime-rs
          - stratovirt
          - cloud-hypervisor
        instance-type:
@@ -45,6 +46,11 @@ jobs:
          - host_os: cbl-mariner
            vmm: clh
            instance-type: small
+            genpolicy-pull-method: oci-distribution
+          - host_os: cbl-mariner
+            vmm: clh
+            instance-type: small
+            genpolicy-pull-method: containerd
          - host_os: cbl-mariner
            vmm: clh
            instance-type: normal
@@ -56,13 +62,10 @@ jobs:
      GH_PR_NUMBER: ${{ inputs.pr-number }}
      KATA_HOST_OS: ${{ matrix.host_os }}
      KATA_HYPERVISOR: ${{ matrix.vmm }}
-      # Set to install the KBS for attestation tests
-      KBS: ${{ (matrix.vmm == 'qemu' && matrix.host_os == 'ubuntu') && 'true' || 'false' }}
-      # Set the KBS ingress handler (empty string disables handling)
-      KBS_INGRESS: "aks"
      KUBERNETES: "vanilla"
      USING_NFD: "false"
      K8S_TEST_HOST_TYPE: ${{ matrix.instance-type }}
+      GENPOLICY_PULL_METHOD: ${{ matrix.genpolicy-pull-method }}
    steps:
      - uses: actions/checkout@v4
        with:
@@ -76,7 +79,7 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -112,16 +115,6 @@ jobs:
        timeout-minutes: 10
        run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-aks

-      - name: Deploy CoCo KBS
-        if: env.KBS == 'true'
-        timeout-minutes: 10
-        run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs
-
-      - name: Install `kbs-client`
-        if: env.KBS == 'true'
-        timeout-minutes: 10
-        run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client
-
      - name: Run tests
        timeout-minutes: 60
        run: bash tests/integration/kubernetes/gha-run.sh run-tests
--- a/.github/workflows/run-k8s-tests-on-garm.yaml
+++ b/.github/workflows/run-k8s-tests-on-garm.yaml
@@ -89,9 +89,9 @@ jobs:
        run: bash tests/integration/kubernetes/gha-run.sh collect-artifacts

      - name: Archive artifacts ${{ matrix.vmm }}
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
-          name: k8s-tests-garm-${{ matrix.vmm }}
+          name: k8s-tests-garm-${{ matrix.vmm }}-${{ matrix.snapshotter }}-${{ matrix.k8s }}-${{ matrix.instance }}-${{ inputs.tag }}
          path: /tmp/artifacts
          retention-days: 1

--- a/.github/workflows/run-k8s-tests-on-ppc64le.yaml
+++ b/.github/workflows/run-k8s-tests-on-ppc64le.yaml
@@ -31,7 +31,7 @@ jobs:
          - qemu
        k8s:
          - kubeadm
-    runs-on: ppc64le
+    runs-on: k8s-ppc64le
    env:
      DOCKER_REGISTRY: ${{ inputs.registry }}
      DOCKER_REPO: ${{ inputs.repo }}
--- a/.github/workflows/run-k8s-tests-on-zvsi.yaml
+++ b/.github/workflows/run-k8s-tests-on-zvsi.yaml
@@ -27,22 +27,35 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        vmm:
-          - qemu
        snapshotter:
          - devmapper
+          - nydus
        k8s:
          - k3s
-    runs-on: s390x
+        include:
+          - snapshotter: devmapper
+            pull-type: default
+            using-nfd: true
+            deploy-cmd: configure-snapshotter
+            vmm: qemu
+          - snapshotter: nydus
+            pull-type: guest-pull
+            using-nfd: false
+            deploy-cmd: deploy-snapshotter
+            vmm: qemu-coco-dev
+    runs-on: s390x-large
    env:
      DOCKER_REGISTRY: ${{ inputs.registry }}
      DOCKER_REPO: ${{ inputs.repo }}
      DOCKER_TAG: ${{ inputs.tag }}
      PR_NUMBER: ${{ inputs.pr-number }}
+      GH_PR_NUMBER: ${{ inputs.pr-number }}
+      KATA_HOST_OS: "ubuntu"
      KATA_HYPERVISOR: ${{ matrix.vmm }}
      KUBERNETES: "k3s"
+      PULL_TYPE: ${{ matrix.pull-type }}
      SNAPSHOTTER: ${{ matrix.snapshotter }}
-      USING_NFD: "true"
+      USING_NFD: ${{ matrix.using-nfd }}
      TARGET_ARCH: "s390x"
    steps:
      - name: Take a pre-action for self-hosted runner
@@ -63,14 +76,14 @@ jobs:
        run: bash tests/integration/kubernetes/gha-run.sh deploy-k8s

      - name: Configure the ${{ matrix.snapshotter }} snapshotter
-        run: bash tests/integration/kubernetes/gha-run.sh configure-snapshotter
+        run: bash tests/integration/kubernetes/gha-run.sh ${{ matrix.deploy-cmd }}

      - name: Deploy Kata
        timeout-minutes: 10
        run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-zvsi

      - name: Run tests
-        timeout-minutes: 30
+        timeout-minutes: 60
        run: bash tests/integration/kubernetes/gha-run.sh run-tests

      - name: Take a post-action
--- a/.github/workflows/run-kata-coco-tests.yaml
+++ b/.github/workflows/run-kata-coco-tests.yaml
@@ -42,7 +42,9 @@ jobs:
      KATA_HYPERVISOR: ${{ matrix.vmm }}
      KUBERNETES: "k3s"
      USING_NFD: "true"
+      KBS: "true"
      K8S_TEST_HOST_TYPE: "baremetal"
+      KBS_INGRESS: "nodeport"
      SNAPSHOTTER: ${{ matrix.snapshotter }}
      PULL_TYPE: ${{ matrix.pull-type }}
    steps:
@@ -65,6 +67,18 @@ jobs:
        timeout-minutes: 10
        run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-tdx

+      - name: Uninstall previous `kbs-client`
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh uninstall-kbs-client
+
+      - name: Deploy CoCo KBS
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs
+
+      - name: Install `kbs-client`
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client
+
      - name: Run tests
        timeout-minutes: 30
        run: bash tests/integration/kubernetes/gha-run.sh run-tests
@@ -77,6 +91,10 @@ jobs:
        if: always()
        run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter

+      - name: Delete CoCo KBS
+        if: always()
+        run: bash tests/integration/kubernetes/gha-run.sh delete-coco-kbs
+
  run-k8s-tests-on-sev:
    strategy:
      fail-fast: false
@@ -186,3 +204,90 @@ jobs:
      - name: Delete Snapshotter
        if: always()
        run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter
+
+  # Generate jobs for testing CoCo on non-TEE environments
+  run-k8s-tests-coco-nontee:
+    strategy:
+      fail-fast: false
+      matrix:
+        vmm:
+          - qemu-coco-dev
+        snapshotter:
+          - nydus
+        pull-type:
+          - guest-pull
+    runs-on: ubuntu-latest
+    env:
+      DOCKER_REGISTRY: ${{ inputs.registry }}
+      DOCKER_REPO: ${{ inputs.repo }}
+      DOCKER_TAG: ${{ inputs.tag }}
+      GH_PR_NUMBER: ${{ inputs.pr-number }}
+      KATA_HOST_OS: ${{ matrix.host_os }}
+      KATA_HYPERVISOR: ${{ matrix.vmm }}
+      # Some tests rely on that variable to run (or not)
+      KBS: "true"
+      # Set the KBS ingress handler (empty string disables handling)
+      KBS_INGRESS: "aks"
+      KUBERNETES: "vanilla"
+      PULL_TYPE: ${{ matrix.pull-type }}
+      SNAPSHOTTER: ${{ matrix.snapshotter }}
+      USING_NFD: "false"
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ inputs.commit-hash }}
+          fetch-depth: 0
+
+      - name: Rebase atop of the latest target branch
+        run: |
+          ./tests/git-helper.sh "rebase-atop-of-the-latest-target-branch"
+        env:
+          TARGET_BRANCH: ${{ inputs.target-branch }}
+
+      - name: Download Azure CLI
+        run: bash tests/integration/kubernetes/gha-run.sh install-azure-cli
+
+      - name: Log into the Azure account
+        run: bash tests/integration/kubernetes/gha-run.sh login-azure
+        env:
+          AZ_APPID: ${{ secrets.AZ_APPID }}
+          AZ_PASSWORD: ${{ secrets.AZ_PASSWORD }}
+          AZ_TENANT_ID: ${{ secrets.AZ_TENANT_ID }}
+          AZ_SUBSCRIPTION_ID: ${{ secrets.AZ_SUBSCRIPTION_ID }}
+
+      - name: Create AKS cluster
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh create-cluster
+
+      - name: Install `bats`
+        run: bash tests/integration/kubernetes/gha-run.sh install-bats
+
+      - name: Install `kubectl`
+        run: bash tests/integration/kubernetes/gha-run.sh install-kubectl
+
+      - name: Download credentials for the Kubernetes CLI to use them
+        run: bash tests/integration/kubernetes/gha-run.sh get-cluster-credentials
+
+      - name: Deploy Snapshotter
+        timeout-minutes: 5
+        run: bash tests/integration/kubernetes/gha-run.sh deploy-snapshotter
+
+      - name: Deploy Kata
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-aks
+
+      - name: Deploy CoCo KBS
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs
+
+      - name: Install `kbs-client`
+        timeout-minutes: 10
+        run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client
+
+      - name: Run tests
+        timeout-minutes: 60
+        run: bash tests/integration/kubernetes/gha-run.sh run-tests
+
+      - name: Delete AKS cluster
+        if: always()
+        run: bash tests/integration/kubernetes/gha-run.sh delete-cluster
--- a/.github/workflows/run-kata-deploy-tests-on-aks.yaml
+++ b/.github/workflows/run-kata-deploy-tests-on-aks.yaml
@@ -33,6 +33,7 @@ jobs:
          - clh
          - dragonball
          - qemu
+          - qemu-runtime-rs
        include:
          - host_os: cbl-mariner
            vmm: clh
--- a/.github/workflows/run-kata-monitor-tests.yaml
+++ b/.github/workflows/run-kata-monitor-tests.yaml
@@ -26,6 +26,10 @@ jobs:
        include:
          - container_engine: containerd
            containerd_version: lts
+        exclude:
+          # TODO: enable with containerd when https://github.com/kata-containers/kata-containers/issues/9761 is fixed
+          - container_engine: containerd
+            vmm: qemu
    runs-on: garm-ubuntu-2204-smaller
    env:
      CONTAINER_ENGINE: ${{ matrix.container_engine }}
@@ -47,7 +51,7 @@ jobs:
        run: bash tests/functional/kata-monitor/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
--- a/.github/workflows/run-metrics.yaml
+++ b/.github/workflows/run-metrics.yaml
@@ -32,7 +32,7 @@ jobs:
          TARGET_BRANCH: ${{ inputs.target-branch }}

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
@@ -86,7 +86,7 @@ jobs:
        run: bash tests/metrics/gha-run.sh make-tarball-results

      - name: archive metrics results ${{ matrix.vmm }}
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
          name: metrics-artifacts-${{ matrix.vmm }}
          path: results-${{ matrix.vmm }}.tar.gz
--- a/.github/workflows/run-runk-tests.yaml
+++ b/.github/workflows/run-runk-tests.yaml
@@ -34,7 +34,7 @@ jobs:
        run: bash tests/integration/runk/gha-run.sh install-dependencies

      - name: get-kata-tarball
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
        with:
          name: kata-static-tarball-amd64${{ inputs.tarball-suffix }}
          path: kata-artifacts
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@@ -8,9 +8,8 @@ jobs:
  stale:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/stale@v8
+      - uses: actions/stale@v9
        with:
-          start-date: '2023-05-01T00:00:00Z'
          stale-pr-message: 'This PR has been opened without with no activity for 180 days. Comment on the issue otherwise it will be closed in 7 days'
          days-before-pr-stale: 180
          days-before-pr-close: 7
--- a/README.md
+++ b/README.md
@@ -140,6 +140,7 @@ The table below lists the remaining parts of the project:
 | [`trace-forwarder`](src/tools/trace-forwarder) | utility | Agent tracing helper. |
 | [`runk`](src/tools/runk) | utility | Standard OCI container runtime based on the agent. |
 | [`ci`](.github/workflows) | CI | Continuous Integration configuration files and scripts. |
+| [`ocp-ci`](ci/openshift-ci/README.md) | CI | Continuous Integration configuration for the OpenShift pipelines. |
 | [`katacontainers.io`](https://github.com/kata-containers/www.katacontainers.io) | Source for the [`katacontainers.io`](https://www.katacontainers.io) site. |
 | [`Webhook`](tools/testing/kata-webhook/README.md) | utility | Example of a simple admission controller webhook to annotate pods with the Kata runtime class |

--- a/2
+++ b/2
@@ -1 +1 @@
-3.3.0
+3.6.0
--- a/ci/README.md
+++ b/ci/README.md
@@ -0,0 +1,343 @@
+# Kata Containers CI
+
+> [!WARNING]
+> While this project's CI has several areas for improvement, it is constantly
+> evolving. This document attempts to describe its current state, but due to
+> ongoing changes, you may notice some outdated information here. Feel free to
+> modify/improve this document as you use the CI and notice anything odd. The
+> community appreciates it!
+
+## Introduction
+
+The Kata Containers CI relies on [GitHub Actions][gh-actions], where the actions
+themselves can be found in the `.github/workflows` directory, and they may call
+helper scripts, which are located under the `tests` directory, to actually
+perform the tasks required for each test case.
+
+## The different workflows
+
+There are a few different sets of workflows that are running as part of our CI,
+and here we're going to cover the ones that are less likely to get rotten.  With
+this said, it's fair to advise that if the reader finds something that got
+rotten, opening an issue to the project pointing to the problem is a nice way to
+help, and providing a fix for the issue is a very encouraging way to help.
+
+### Jobs that run automatically when a PR is raised
+
+These are a bunch of tests that will automatically run as soon as a PR is
+opened, they're mostly running on "cost free" runners, and they do some
+pre-checks to evaluate that your PR may be okay to start getting reviewed.
+
+Mind, though, that the community expects the contributors to, at least, build
+their code before submitting a PR, which the community sees as a very fair
+request.
+
+Without getting into the weeds with details on this, those jobs are the ones
+responsible for ensuring that:
+
+- The commit message is in the expected format
+- There's no missing Developer's Certificate of Origin
+- Static checks are passing
+
+### Jobs that require a maintainer's approval to run
+
+These are the required tests, and our so-called "CI".  These require a
+maintainer's approval to run as parts of those jobs will be running on "paid
+runners", which are currently using Azure infrastructure.
+
+Once a maintainer of the project gives "the green light" (currently by adding an
+`ok-to-test` label to the PR, soon to be changed to commenting "/test" as part
+of a PR review), the following tests will be executed:
+
+- Build all the components (runs on free cost runners, or bare-metal depending on the architecture)
+- Create a tarball with all the components (runs on free cost runners, or bare-metal depending on the architecture)
+- Create a kata-deploy payload with the tarball generated in the previous step (runs on free costs runner, or bare-metal depending on the architecture)
+- Run the following tests:
+  - Tests depending on the generated tarball
+    - Metrics (runs on bare-metal)
+    - `docker` (runs on Azure small instances)
+    - `nerdctl` (runs on Azure small instances)
+    - `kata-monitor` (runs on Azure small instances)
+    - `cri-containerd` (runs on Azure small instances)
+    - `nydus` (runs on Azure small instances)
+    - `vfio` (runs on Azure normal instances)
+  - Tests depending on the generated kata-deploy payload
+    - kata-deploy (runs on Azure small instances)
+      - Tests are performed using different "Kubernetes flavors", such as k0s, k3s, rke2, and Azure Kubernetes Service (AKS).
+    - Kubernetes (runs in Azure small and medium instances depending on what's required by each test, and on TEE bare-metal machines)
+      - Tests are performed with different runtime engines, such as CRI-O and containerd.
+      - Tests are performed with different snapshotters for containerd, namely OverlayFS and devmapper.
+      - Tests are performed with all the supported hypervisors, which are Cloud Hypervisor, Dragonball, Firecracker, and QEMU.
+
+For all the tests relying on Azure instances, real money is being spent, so the
+community asks for the maintainers to be mindful about those, and avoid abusing
+them to merely debug issues.
+
+## The different runners
+
+In the previous section we've mentioned using different runners, now in this section we'll go through each type of runner used.
+
+- Cost free runners:  Those are the runners provided by GIthub itself, and
+  those are fairly small machines with no virtualization capabilities enabled - 
+- Azure small instances: Those are runners which have virtualization
+  capabilities enabled, 2 CPUs, and 8GB of RAM.  These runners have a "-smaller"
+  suffix to their name. 
+- Azure normal instances: Those are runners which have virtualization
+  capabilities enabled, 4 CPUs, and 16GB of RAM.  These runners are usually
+  `garm` ones with no "-smaller" suffix.
+- Bare-metal runners: Those are runners provided by community contributors,
+  and they may vary in architecture, size and virtualization capabilities.
+  Builder runners don't actually require any virtualization capabilities, while
+  runners which will be actually performing the tests must have virtualization
+  capabilities and a reasonable amount for CPU and RAM available (at least
+  matching the Azure normal instances).
+  
+## Adding new tests
+
+Before someone decides to add a new test, we strongly recommend them to go
+through [GitHub Actions Documentation][gh-actions],
+which will provide you a very sensible background on how to read and understand
+current tests we have, and also become familiar with how to write a new test.
+
+On the Kata Containers land, there are basically two sets of tests: "standalone"
+and "part of something bigger".
+
+The "standalone" tests, for example the commit message check, won't be covered
+here as they're better covered by the GitHub Actions documentation pasted above.
+
+The "part of something bigger" is the more complicated one and not so
+straightforward to add, so we'll be focusing our efforts on describing the
+addition of those.
+
+> [!NOTE]
+> TODO: Currently, this document refers to "tests" when it actually means the
+> jobs (or workflows) of GitHub. In an ideal world, except in some specific cases,
+> new tests should be added without the need to add new workflows. In the
+> not-too-distant future (hopefully), we will improve the workflows to support
+> this.
+
+### Adding a new test that's "part of something bigger"
+
+The first important thing here is to align expectations, and we must say that
+the community strongly prefers receiving tests that already come with:
+
+- Instructions how to run them
+- A proven run where it's passing
+
+There are several ways to achieve those two requirements, and an example of that
+can be seen in PR #8115.
+
+With the expectations aligned, adding a test consists in:
+
+- Adding a new yaml file for your test, and ensure it's called from the
+  "bigger" yaml. See the [Kata Monitor test example][monitor-ex01].
+
+- Adding the helper scripts needed for your test to run. Again, use the [Kata Monitor script as example][monitor-ex02].
+
+Following those examples, the community advice during the review, and even
+asking the community directly on Slack are the best ways to get your test
+accepted.
+
+## Running tests
+
+### Running the tests as part of the CI
+
+If you're a maintainer of the project, you'll be able to kick in the tests by
+yourself.  With the current approach, you just need to add the `ok-to-test`
+label and the tests will automatically start.  We're moving, though, to use a
+`/test` command as part of a GitHub review comment, which will simplify this
+process.
+
+If you're not a maintainer, please, send a message on Slack or wait till one of
+the maintainers reviews your PR.  Maintainers will then kick in the tests on
+your behalf.
+
+In case a test fails and there's the suspicion it happens due to flakiness in
+the test itself, please, create an issue for us, and then re-run (or asks
+maintainers to re-run) the tests following these steps:
+
+- Locate which tests is failing
+- Click in "details"
+- In the top right corner, click in "Re-run jobs"
+- And then in "Re-run failed jobs"
+- And finally click in the green "Re-run jobs" button
+
+> [!NOTE]
+> TODO: We need figures here
+
+### Running the tests locally
+
+In this section, aligning expectations is also something very important, as one
+will not be able to run the tests exactly in the same way the tests are running
+in the CI, as one most likely won't have access to an Azure subscription.
+However, we're trying our best here to provide you with instructions on how to
+run the tests in an environment that's "close enough" and will help you to debug
+issues you find with the current tests, or even provide a proof-of-concept to
+the new test you're trying to add.
+
+The basic steps, which we will cover in details down below are:
+
+ 1. Create a VM matching the configuration of the target runner
+ 2. Generate the artifacts you'll need for the test, or download them from a
+    current failed run
+ 3. Follow the steps provided in the action itself to run the tests.
+
+Although the general overview looks easy, we know that some tricks need to be
+shared, and we'll go through the general process of debugging one non-Kubernetes
+and one Kubernetes specific test for educational purposes.
+
+One important thing to note is that "Create a VM" can be done in innumerable
+different ways, using the tools of your choice.  For the sake of simplicity on
+this guide, we'll be using `kcli`, which we strongly recommend in case you're a
+non-experienced user, and happen to be developing on a Linux box.
+
+For both non-Kubernetes and Kubernetes cases, we'll be using PR #8070 as an
+example, which at the time this document is being written serves us very well
+the purpose, as you can see that we have `nerdctl` and Kubernetes tests failing.
+
+## Debugging tests
+
+### Debugging a non Kubernetes test
+
+As shown above, the `nerdctl` test is failing.
+
+As a developer you can go ahead to the details of the job, and expand the job
+that's failing in order to gather more information.
+
+But when that doesn't help, we need to set up our own environment to debug
+what's going on.
+
+Taking a look at the `nerdctl` test, which is located here, you can easily see
+that it runs-on a `garm-ubuntu-2304-smaller` virtual machine.
+
+The important parts to understand are `ubuntu-2304`, which is the OS where the
+test is running on; and "smaller", which means we're running it on a machine
+with 2 CPUs and 8GB of RAM.
+
+With this information, we can go ahead and create a similar VM locally using `kcli`.
+
+```bash
+$ sudo kcli create vm -i ubuntu2304 -P disks=[60] -P numcpus=2 -P memory=8192 -P cpumodel=host-passthrough debug-nerdctl-pr8070
+```
+
+In order to run the tests, you'll need the "kata-tarball" artifacts, which you
+can build your own using "make kata-tarball" (see below), or simply get them
+from the PR where the tests failed.  To download them, click on the "Summary"
+button that's on the top left corner, and then scroll down till you see the
+artifacts, as shown below.
+
+Unfortunately GitHub doesn't give us a link that we can download those from
+inside the VM, but we can download them on our local box, and then `scp` the
+tarball to the newly created VM that will be used for debugging purposes.
+
+> [!NOTE]
+> Those artifacts are only available (for 15 days) when all jobs are finished.
+
+Once you have the `kata-static.tar.xz` in your VM, you can login to the VM with
+`kcli ssh debug-nerdctl-pr8070`, go ahead and then clone your development branch
+
+```bash
+$ git clone --branch feat_add-fc-runtime-rs https://github.com/nubificus/kata-containers
+```
+
+Add the upstream as a remote, set up your git, and rebase your branch atop of the upstream main one
+
+```bash
+$ git remote add upstream https://github.com/kata-containers/kata-containers
+$ git remote update
+$ git config --global user.email "you@example.com"
+$ git config --global user.name "Your Name"
+$ git rebase upstream/main 
+```
+
+Now copy the `kata-static.tar.xz` into your `kata-containers/kata-artifacts` directory
+
+```bash
+$ mkdir kata-artifacts
+$ cp ../kata-static.tar.xz kata-artifacts/
+```
+
+> [!NOTE]
+> If you downloaded the .zip from GitHub you need to uncompress first to see `kata-static.tar.xz`
+
+And finally run the tests following what's in the yaml file for the test you're
+debugging. 
+
+In our case, the `run-nerdctl-tests-on-garm.yaml`.
+
+When looking at the file you'll notice that some environment variables are set,
+such as `KATA_HYPERVISOR`, and should be aware that, for this particular example,
+the important steps to follow are:
+
+Install the dependencies
+Install kata
+Run the tests
+
+Let's now run the steps mentioned above exporting the expected environment variables
+
+```bash
+$ export KATA_HYPERVISOR=dragonball
+$ bash ./tests/integration/nerdctl/gha-run.sh install-dependencies
+$ bash ./tests/integration/nerdctl/gha-run.sh install-kata
+$ bash tests/integration/nerdctl/gha-run.sh run
+```
+
+And with this you should've been able to reproduce exactly the same issue found
+in the CI, and from now on you can build your own code, use your own binaries,
+and have fun debugging and hacking! 
+
+### Debugging a Kubernetes test
+
+Steps for debugging the Kubernetes tests are very similar to the ones for
+debugging non-Kubernetes tests, with the caveat that what you'll need, this
+time, is not the `kata-static.tar.xz` tarball, but rather a payload to be used
+with kata-deploy.
+
+In order to generate your own kata-deploy image you can generate your own
+`kata-static.tar.xz` and then take advantage of the following script.  Be aware
+that the image generated and uploaded must be accessible by the VM where you'll
+be performing your tests.
+
+In case you want to take advantage of the payload that was already generated
+when you faced the CI failure, which is considerably easier, take a look at the
+failed job, then click in "Deploy Kata" and expand the "Final kata-deploy.yaml
+that is used in the test" section.  From there you can see exactly what you'll
+have to use when deploying kata-deploy in your local cluster.
+
+> [!NOTE]
+> TODO: WAINER TO FINISH THIS PART BASED ON HIS PR TO RUN A LOCAL CI
+
+## Adding new runners
+
+Any admin of the project is able to add or remove GitHub runners, and those are
+the folks you should rely on.
+
+If you need a new runner added, please, tag @ac in the Kata Containers slack,
+and someone from that group will be able to help you.
+
+If you're part of that group and you're looking for information on how to help
+someone, this is simple, and must be done in private. Basically what you have to
+do is:
+
+- Go to the kata-containers/kata-containers repo
+- Click on the Settings button, located in the top right corner
+- On the left panel, under "Code and automation", click on "Actions"
+- Click on "Runners"
+
+If you want to add a new self-hosted runner:
+
+- In the top right corner there's a green button called "New self-hosted runner"
+
+If you want to remove a current self-hosted runner:
+
+- For each runner there's a "..." menu, where you can just click and the
+  "Remove runner" option will show up
+  
+## Known limitations
+
+As the GitHub actions are structured right now we cannot: Test the addition of a
+GitHub action that's not triggered by a pull_request event as part of the PR.
+
+[gh-actions]: https://docs.github.com/en/actions
+[monitor-ex01]: https://github.com/kata-containers/kata-containers/commit/a3fb067f1bccde0cbd3fd4d5de12dfb3d8c28b60
+[monitor-ex02]: https://github.com/kata-containers/kata-containers/commit/489caf1ad0fae27cfd00ba3c9ed40e3d512fa492
--- a/ci/install_libseccomp.sh
+++ b/ci/install_libseccomp.sh
@@ -23,11 +23,11 @@ workdir="$(mktemp -d --tmpdir build-libseccomp.XXXXX)"
 # Variables for libseccomp
 libseccomp_version="${LIBSECCOMP_VERSION:-""}"
 if [ -z "${libseccomp_version}" ]; then
-    libseccomp_version=$(get_from_kata_deps "externals.libseccomp.version")
+    libseccomp_version=$(get_from_kata_deps ".externals.libseccomp.version")
 fi
 libseccomp_url="${LIBSECCOMP_URL:-""}"
 if [ -z "${libseccomp_url}" ]; then
-    libseccomp_url=$(get_from_kata_deps "externals.libseccomp.url")
+    libseccomp_url=$(get_from_kata_deps ".externals.libseccomp.url")
 fi
 libseccomp_tarball="libseccomp-${libseccomp_version}.tar.gz"
 libseccomp_tarball_url="${libseccomp_url}/releases/download/v${libseccomp_version}/${libseccomp_tarball}"
@@ -36,11 +36,11 @@ cflags="-O2"
 # Variables for gperf
 gperf_version="${GPERF_VERSION:-""}"
 if [ -z "${gperf_version}" ]; then
-    gperf_version=$(get_from_kata_deps "externals.gperf.version")
+    gperf_version=$(get_from_kata_deps ".externals.gperf.version")
 fi
 gperf_url="${GPERF_URL:-""}"
 if [ -z "${gperf_url}" ]; then
-    gperf_url=$(get_from_kata_deps "externals.gperf.url")
+    gperf_url=$(get_from_kata_deps ".externals.gperf.url")
 fi
 gperf_tarball="gperf-${gperf_version}.tar.gz"
 gperf_tarball_url="${gperf_url}/${gperf_tarball}"
--- a/ci/install_yq.sh
+++ b/ci/install_yq.sh
@@ -5,6 +5,8 @@
 # SPDX-License-Identifier: Apache-2.0
 #

+[ -n "$DEBUG" ] && set -o xtrace
+
 # If we fail for any reason a message will be displayed
 die() {
 	msg="$*"
@@ -16,7 +18,7 @@ die() {
 # Install via binary download, as we may not have golang installed at this point
 function install_yq() {
 	local yq_pkg="github.com/mikefarah/yq"
-	local yq_version=3.4.1
+	local yq_version=v4.40.7
 	local precmd=""
 	INSTALL_IN_GOPATH=${INSTALL_IN_GOPATH:-true}

@@ -36,7 +38,7 @@ function install_yq() {
 			fi
 		fi
 	fi
-	[ -x  "${yq_path}" ] && [ "`${yq_path} --version`"X == "yq version ${yq_version}"X ] && return
+	[ -x  "${yq_path}" ] && [ "`${yq_path} --version`"X == "yq (https://github.com/mikefarah/yq/) version ${yq_version}"X ] && return

 	read -r -a sysInfo <<< "$(uname -sm)"

--- a/ci/lib.sh
+++ b/ci/lib.sh
@@ -21,13 +21,7 @@ clone_tests_repo()
 {
 	if [ -d "$tests_repo_dir" ]; then
 		[ -n "${CI:-}" ] && return
-		# git config --global --add safe.directory will always append
-		# the target to .gitconfig without checking the existence of
-		# the target, so it's better to check it before adding the target repo.
-		local sd="$(git config --global --get safe.directory ${tests_repo_dir} || true)"
-		if [ -z "${sd}" ]; then
-			git config --global --add safe.directory ${tests_repo_dir}
-		fi
+
 		pushd "${tests_repo_dir}"
 		git checkout "${branch}"
 		git pull
--- a/ci/openshift-ci/README.md
+++ b/ci/openshift-ci/README.md
@@ -0,0 +1,149 @@
+OpenShift CI
+============
+
+This directory contains scripts used by
+[the OpenShift CI](https://github.com/openshift/release/tree/master/ci-operator/config/kata-containers/kata-containers)
+pipelines to monitor selected functional tests on OpenShift.
+There are 2 pipelines, history and logs can be accessed here:
+
+* [main - currently supported OCP](https://prow.ci.openshift.org/job-history/gs/origin-ci-test/logs/periodic-ci-kata-containers-kata-containers-main-e2e-tests)
+* [next - currently under development OCP](https://prow.ci.openshift.org/job-history/gs/origin-ci-test/logs/periodic-ci-kata-containers-kata-containers-main-next-e2e-tests)
+
+
+Running openshift-tests on OCP with kata-containers manually
+============================================================
+
+To run openshift-tests (or other suites) with kata-containers one can use
+the kata-webhook. To deploy everything you can mimic the CI pipeline by:
+
+```bash
+#!/bin/bash -e
+# Setup your kubectl and check it's accessible by
+kubectl nodes
+# Deploy kata (set KATA_DEPLOY_IMAGE to override the default kata-deploy-ci:latest image)
+./test.sh
+# Deploy the webhook
+KATA_RUNTIME=kata-qemu cluster/deploy_webhook.sh
+```
+
+This should ensure kata-containers as well as kata-webhook are installed and
+working. Before running the openshift-tests it's (currently) recommended to
+ignore some security features by:
+
+```bash
+#!/bin/bash -e
+oc adm policy add-scc-to-group privileged system:authenticated system:serviceaccounts
+oc adm policy add-scc-to-group anyuid system:authenticated system:serviceaccounts
+oc label --overwrite ns default pod-security.kubernetes.io/enforce=privileged pod-security.kubernetes.io/warn=baseline pod-security.kubernetes.io/audit=baseline
+```
+
+Now you should be ready to run the openshift-tests. Our CI only uses a subset
+of tests, to get the current ``TEST_SKIPS`` see
+[the pipeline config](https://github.com/openshift/release/tree/master/ci-operator/config/kata-containers/kata-containers).
+Following steps require the [openshift tests](https://github.com/openshift/origin)
+being cloned and built in the current directory:
+
+```bash
+#!/bin/bash -e
+# Define tests to be skipped (see the pipeline config for the current version)
+TEST_SKIPS="\[sig-node\] Security Context should support seccomp runtime/default\|\[sig-node\] Variable Expansion should allow substituting values in a volume subpath\|\[k8s.io\] Probing container should be restarted with a docker exec liveness probe with timeout\|\[sig-node\] Pods Extended Pod Container lifecycle evicted pods should be terminal\|\[sig-node\] PodOSRejection \[NodeConformance\] Kubelet should reject pod when the node OS doesn't match pod's OS\|\[sig-network\].*for evicted pods\|\[sig-network\].*HAProxy router should override the route\|\[sig-network\].*HAProxy router should serve a route\|\[sig-network\].*HAProxy router should serve the correct\|\[sig-network\].*HAProxy router should run\|\[sig-network\].*when FIPS.*the HAProxy router\|\[sig-network\].*bond\|\[sig-network\].*all sysctl on whitelist\|\[sig-network\].*sysctls should not affect\|\[sig-network\] pods should successfully create sandboxes by adding pod to network"
+# Get the list of tests to be executed
+TESTS="$(./openshift-tests run --dry-run --provider "${TEST_PROVIDER}" "${TEST_SUITE}")"
+# Store the list of tests in /tmp/tsts file
+echo "${TESTS}" | grep -v "$TEST_SKIPS" > /tmp/tsts
+# Remove previously-existing temporarily files as well as previous results
+OUT=RESULTS/tmp
+rm -Rf /tmp/*test* /tmp/e2e-*
+rm -R $OUT
+mkdir -p $OUT
+# Run the tests ignoring the monitor health checks
+./openshift-tests run --provider azure -o "$OUT/job.log" --junit-dir "$OUT" --file /tmp/tsts --max-parallel-tests 5 --cluster-stability Disruptive --run '^\[sig-node\].*|^\[sig-network\]'
+```
+
+[!NOTE]
+Note we are ignoring the cluster stability checks because our public cloud is
+not that stable and running with VMs instead of containers results in minor
+stability issues. Some of the old monitor stability tests do not reflect
+the ``--cluster-stability`` setting, one should simply ignore these. If you
+get a message like ``invariant was violated`` or ``error: failed due to a
+MonitorTest failure``, it's usually an indication that only those kind of
+tests failed but the real tests passed. See
+[wrapped-openshift-tests.sh](https://github.com/openshift/release/blob/master/ci-operator/config/kata-containers/kata-containers/wrapped-openshift-tests.sh)
+for details how our pipeline deals with that.
+
+[!TIP]
+To compare multiple results locally one can use
+[junit2html](https://github.com/inorton/junit2html) tool.
+
+
+Best-effort kata-containers cleanup
+===================================
+
+If you need to cleanup the cluster after testing, you can use the
+``cleanup.sh`` script from the current directory. It tries to delete all
+resources created by ``test.sh`` as well as ``cluster/deploy_webhook.sh``
+ignoring all failures. The primary purpose of this script is to allow
+soft-cleanup after deployment to test different versions without
+re-provisioning everything.
+
+[!WARNING]
+Do not rely on this script in production, return codes are not checked!**
+
+
+Bisecting e2e tests failures
+============================
+
+Let's say the OCP pipeline passed running with
+``quay.io/kata-containers/kata-deploy-ci:kata-containers-d7afd31fd40e37a675b25c53618904ab57e74ccd-amd64``
+but failed running with
+``quay.io/kata-containers/kata-deploy-ci:kata-containers-9f512c016e75599a4a921bd84ea47559fe610057-amd64``
+and you'd like to know which PR caused the regression. You can either run with
+all the 60 tags between or you can utilize the [bisecter](https://github.com/ldoktor/bisecter)
+to optimize the number of steps in between.
+
+Before running the bisection you need a reproducer script. Sample one called
+``sample-test-reproducer.sh`` is provided in this directory but you might
+want to copy and modify it, especially:
+
+* ``OCP_DIR`` - directory where your openshift/release is located (can be exported)
+* ``E2E_TEST`` - openshift-test(s) to be executed (can be exported)
+* behaviour of SETUP (returning 125 skips the current image tag, returning
+  >=128 interrupts the execution, everything else reports the tag as failure
+* what should be executed (perhaps running the setup is enough for you or
+  you might want to be looking for specific failures...)
+* use ``timeout`` to interrupt execution in case you know things should be faster
+
+Executing that script with the GOOD commit should pass
+``./sample-test-reproducer.sh quay.io/kata-containers/kata-deploy-ci:kata-containers-d7afd31fd40e37a675b25c53618904ab57e74ccd-amd64``
+and fail when executed with the BAD commit
+``./sample-test-reproducer.sh quay.io/kata-containers/kata-deploy-ci:kata-containers-9f512c016e75599a4a921bd84ea47559fe610057-amd64``.
+
+To get the list of all tags in between those two PRs you can use the
+``bisect-range.sh`` script
+
+```bash
+./bisect-range.sh d7afd31fd40e37a675b25c53618904ab57e74ccd 9f512c016e75599a4a921bd84ea47559fe610057
+```
+
+[!NOTE]
+The tagged images are only built per PR, not for individual commits. See
+[kata-deploy-ci](https://quay.io/kata-containers/kata-deploy-ci) to see the
+available images.
+
+To find out which PR caused this regression, you can either manually try the
+individual commits or you can simply execute:
+
+```bash
+bisecter start "$(./bisect-range.sh d7afd31fd40 9f512c016)"
+OCP_DIR=/path/to/openshift/release bisecter run ./sample-test-reproducer.sh
+```
+
+[!NOTE]
+If you use ``KATA_WITH_SYSTEM_QEMU=yes`` you might want to deploy once with
+it and skip it for the cleanup. That way you might (in most cases) test
+all images with a single MCP update instead of per-image MCP update.
+
+[!TIP]
+You can check the bisection progress during/after execution by running
+``bisecter log`` from the current directory. Before starting a new
+bisection you need to execute ``bisecter reset``.
--- a/ci/openshift-ci/bisect-range.sh
+++ b/ci/openshift-ci/bisect-range.sh
@@ -0,0 +1,24 @@
+#!/bin/bash
+# Copyright (c) 2024 Red Hat, Inc.
+#
+# SPDX-License-Identifier: Apache-2.0
+#
+if [ "$#" -gt 2 ] || [ "$#" -lt 1 ] ; then
+	echo "Usage: $0 GOOD [BAD]"
+	echo "Prints list of available kata-deploy-ci tags between GOOD and BAD commits (by default BAD is the latest available tag)"
+	exit 255
+fi
+GOOD="$1"
+[ -n "$2" ] && BAD="$2"
+ARCH=amd64
+REPO="quay.io/kata-containers/kata-deploy-ci"
+
+TAGS=$(skopeo list-tags "docker://$REPO")
+# Only amd64
+TAGS=$(echo "$TAGS" | jq '.Tags' | jq "map(select(endswith(\"$ARCH\")))" | jq -r '.[]')
+# Tags since $GOOD
+TAGS=$(echo "$TAGS" | sed -n -e "/$GOOD/,$$p")
+# Tags up to $BAD
+[ -n "$BAD" ] && TAGS=$(echo "$TAGS" | sed "/$BAD/q")
+# Comma separated tags with repo
+echo "$TAGS" | sed -e "s@^@$REPO:@" | paste -s -d, -
--- a/ci/openshift-ci/cleanup.sh
+++ b/ci/openshift-ci/cleanup.sh
@@ -25,6 +25,10 @@ WORKAROUND_9206_CRIO=${WORKAROUND_9206_CRIO:-no}
 # Ignore errors as we want best-effort-approach here
 trap - ERR

+# Delete webhook resources
+oc delete -f "${scripts_dir}/../../tools/testing/kata-webhook/deploy"
+oc delete -f "${scripts_dir}/cluster/deployments/configmap_kata-webhook.yaml.in"
+
 # Delete potential smoke-test resources
 oc delete -f "${scripts_dir}/smoke/service.yaml"
 oc delete -f "${scripts_dir}/smoke/service_kubernetes.yaml"
--- a/ci/openshift-ci/cluster/install_kata.sh
+++ b/ci/openshift-ci/cluster/install_kata.sh
@@ -96,7 +96,7 @@ wait_for_reboot() {
 }

 wait_mcp_update() {
-	local delta="${1:-1200}"
+	local delta="${1:-3600}"
 	local sleep_time=30
 	# The machineconfigpool is fine when all the workers updated and are ready,
 	# and none are degraded.
--- a/ci/openshift-ci/images/Dockerfile.buildroot
+++ b/ci/openshift-ci/images/Dockerfile.buildroot
@@ -4,7 +4,7 @@
 #
 # This is the build root image for Kata Containers on OpenShift CI.
 #
-FROM quay.io/centos/centos:stream8
+FROM quay.io/centos/centos:stream9

 RUN yum -y update && \
    yum -y install \
--- a/ci/openshift-ci/sample-test-reproducer.sh
+++ b/ci/openshift-ci/sample-test-reproducer.sh
@@ -0,0 +1,50 @@
+#!/bin/bash
+# Copyright (c) 2024 Red Hat, Inc.
+#
+# SPDX-License-Identifier: Apache-2.0
+#
+# A sample script to deploy, configure, run E2E_TEST and soft-cleanup
+# afterwards OCP cluster using kata-containers primarily created for use
+# with https://github.com/ldoktor/bisecter
+
+[ "$#" -ne 1 ] && echo "Provide image as the first and only argument" && exit 255
+export KATA_DEPLOY_IMAGE="$1"
+OCP_DIR="${OCP_DIR:-/path/to/your/openshift/release/}"
+E2E_TEST="${E2E_TEST:-'"[sig-node] Container Runtime blackbox test on terminated container should report termination message as empty when pod succeeds and TerminationMessagePolicy FallbackToLogsOnError is set [NodeConformance] [Conformance] [Suite:openshift/conformance/parallel/minimal] [Suite:k8s]"'}"
+KATA_CI_DIR="${KATA_CI_DIR:-$(pwd)}"
+export KATA_RUNTIME="${KATA_RUNTIME:-kata-qemu}"
+
+## SETUP
+# Deploy kata
+SETUP=0
+pushd "$KATA_CI_DIR" || { echo "Failed to cd to '$KATA_CI_DIR'"; exit 255; }
+./test.sh || SETUP=125
+cluster/deploy_webhook.sh || SETUP=125
+if [ $SETUP != 0 ]; then
+    ./cleanup.sh
+    exit "$SETUP"
+fi
+popd || true
+# Disable security
+oc adm policy add-scc-to-group privileged system:authenticated system:serviceaccounts
+oc adm policy add-scc-to-group anyuid system:authenticated system:serviceaccounts
+oc label --overwrite ns default pod-security.kubernetes.io/enforce=privileged pod-security.kubernetes.io/warn=baseline pod-security.kubernetes.io/audit=baseline
+
+## TEST EXECUTION
+# Run the testing
+pushd "$OCP_DIR" || { echo "Failed to cd to '$OCP_DIR'"; exit 255; }
+echo "$E2E_TEST" > /tmp/tsts
+# Remove previously-existing temporarily files as well as previous results
+OUT=RESULTS/tmp
+rm -Rf /tmp/*test* /tmp/e2e-*
+rm -R $OUT
+mkdir -p $OUT
+# Run the tests ignoring the monitor health checks
+./openshift-tests run --provider azure -o "$OUT/job.log" --junit-dir "$OUT" --file /tmp/tsts --max-parallel-tests 5 --cluster-stability Disruptive
+RET=$?
+popd || true
+
+## CLEANUP
+./cleanup.sh
+exit "$RET"
+
--- a/docs/Blog-Post-Submission-Guide.md
+++ b/docs/Blog-Post-Submission-Guide.md
@@ -0,0 +1,86 @@
+# Blog Post Contributor Guide
+
+This section describes the guidelines for contributing new blog posts to the
+Kata Containers website.
+
+## Share your stories on the Kata Containers website
+
+Are you experimenting with Kata Containers or have it deployed in production and
+would like to share your story as a case study? Do you have a use case that
+Kata Containers can make more secure, but the world doesn't know it yet? Do you
+have features in the runtime that you like and would like to highlight? Do you
+have a Kata Containers demo that you would like to draw attention to?
+
+Share your Kata Containers story on the [Kata Containers blog](https://www.katacontainers.io/blog/)!
+You are only a few steps away...
+
+### Kata Containers website source
+
+Like the rest of the Kata Containers artifacts, the project’s website code and
+content are stored in a [GitHub repository](https://github.com/kata-containers/www.katacontainers.io).
+
+The blog posts are written using markdown language that is mainly plain text
+with a few easy formatting conventions to create lists, add images or code blocks,
+or format the text.
+
+You can find many [cheat sheets](https://www.markdownguide.org/cheat-sheet/)
+floating on the web to get in terms of the basic syntax. You can also check the
+[source files of the already existing blog posts](https://github.com/kata-containers/www.katacontainers.io/tree/main/src/pages/blog),
+where you will find examples of all the basic items that you will need for your
+new entry.
+
+### Create a new blog post
+
+When you create a new blog post, you need to create a new file in the
+[`src/pages/blog/` folder](https://github.com/kata-containers/www.katacontainers.io/tree/main/src/pages/blog)
+with a `.md` extension.
+
+The markdown file has a few formatting conventions in its header to capture the
+title, author, publishing date and category of your blog post.
+
+The header looks like the following:
+
+```
+  ---
+  templateKey: blog-post
+  title: The Title of Your Amazing Blog Post
+  author: Your Name
+  date: 2021-01-28T16:23:52.741Z
+  category:
+    - value: category-6-wjkXzEM2
+      label: Features & Updates
+  ---
+```
+
+The categories give the possibility to filter on the web page and see only the
+blog posts that fall under one of the options. You can choose from the
+following options:
+
+* News & Announcements
+* Features & Updates
+
+The `Annual Report` category is reserved for the Kata Containers chapter in the
+Open Infrastructure Annual report that we are also re-posting on the Kata
+Containers website.
+
+Once you filled out the above fields in the header and got your one-liner all
+set, you can go ahead and type up the contents of your blog post using the
+conventional markdown formatting.
+
+If you have an image file to add, you need to place the file in the
+`static/img` folder.
+
+You can then insert the image into your blog post by using the following line:
+
+```
+  ![alt text](/img/the-file-name-of-your-image.jpg)
+```
+
+Once you are done with formatting your blog post and happy with the content, you
+need to upload it to GitHub and create a pull request. You can do that by using
+git commands on your laptop or you can also use the GitHub web interface to add
+files to the repository and create a pull request when you are ready.
+
+If you have an idea for a blog post and would like to get feedback from the
+community about it or have any questions about the process, please reach out
+on one of the community's [communication channels](https://katacontainers.io/community/).
--- a/docs/Debug-shim-guide.md
+++ b/docs/Debug-shim-guide.md
@@ -0,0 +1,185 @@
+# Using a debugger with the runtime
+
+Setting up a debugger for the runtime is pretty complex: the shim is a server
+process that is run by the runtime manager (containerd/CRI-O), and controlled by
+sending gRPC requests to it.
+Starting the shim with a debugger then just gives you a process that waits for
+commands on its socket, and if the runtime manager doesn't start it, it won't
+send request to it.
+
+A first method is to attach a debugger to the process that was started by the
+runtime manager.
+If the issue you're trying to debug is not located at container creation, this
+is probably the easiest method.
+
+The other method involves a script that is placed in between the runtime manager
+and the actual shim binary. This allows to start the shim with a debugger, and
+wait for a client debugger connection before execution, allowing debugging of the
+kata runtime from the very beginning.
+
+## Prerequisite
+
+At the time of writing, a debugger was used only with the go shim, but a similar
+process should be doable with runtime-rs. This documentation will be enhanced
+with rust-specific instructions later on.
+
+In order to debug the go runtime, you need to use the [Delve debugger](https://github.com/go-delve/delve).
+
+You will also need to build the shim binary with debug flags to make sure symbols
+are available to the debugger.
+Typically, the flags should be: `-gcflags=all=-N -l`
+
+## Attach to the running process
+
+To attach the debugger to the running process, all you need is to let the container
+start as usual, then use the following command with `dlv`:
+
+`$ dlv attach [pid of your kata shim]`
+
+If you need to use your debugger remotely, you can use the following on your target
+machine:
+
+`$ dlv attach [pid of your kata shim] --headless --listen=[IP:port]`
+
+then from your client computer:
+
+`$ dlv connect [IP:port]`
+
+## Make CRI-O/containerd start the shim with the debugger
+
+You can use the [this script](../tools/containerd-shim-katadbg-v2) to make the
+shim binary executed through a debugger, and make the debugger wait for a client
+connection before running the shim.
+This allows starting your container, connecting your debugger, and controlling the
+shim execution from the beginning.
+
+### Adapt the script to your setup
+
+You need to edit the script itself to give it the actual binary
+to execute.
+Locate the following line in the script, and set the path accordingly.
+
+```bash
+SHIM_BINARY=
+```
+
+You may also need to edit the `PATH` variable set within the script,
+to make sure that the `dlv` binary is accessible.
+
+### Configure your runtime manager to use the script
+
+Using either containerd or CRI-O, you will need to have a runtime class that
+uses the script in place of the actual runtime binary.
+To do that, we will create a separate runtime class dedicated to debugging.
+
+- **For containerd**:
+Make sure that the `containerd-shim-katadbg-v2` script is available to containerd
+(putting it in the same folder as your regular kata shim typically).
+Then edit the containerd configuration, and add the following runtime configuration,.
+
+```toml
+[plugins]
+  [plugins."io.containerd.grpc.v1.cri"]
+    [plugins."io.containerd.grpc.v1.cri".containerd]
+      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes]
+        [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.katadbg]
+          runtime_type = "io.containerd.katadbg.v2"
+```
+
+- **For CRI-O**:
+Copy your existing kata runtime configuration from `/etc/crio/crio.conf.d/`, and
+make a new one with the name `katadbg`, and the runtime_path set to the location
+of the script.
+
+E.g:
+
+```toml
+[crio.runtime.runtimes.katadbg]
+  runtime_path = "/usr/local/bin/containerd-shim-katadbg-v2"
+  runtime_root = "/run/vc"
+  runtime_type = "vm"
+  privileged_without_host_devices = true
+  runtime_config_path = "/usr/share/defaults/kata-containers/configuration.toml"
+ ```
+
+NOTE: for CRI-O, the name of the runtime class doesn't need to match the name of the
+script. But for consistency, we're using `katadbg` here too.
+
+### Start your container and connect to the debugger
+
+Once the above configuration is in place, you can start your container, using
+your `katadbg` runtime class.
+
+E.g: `$ crictl runp --runtime=katadbg sandbox.json`
+
+The command will hang, and you can see that a `dlv` process is started
+
+```
+$ ps aux | grep dlv
+root        9137  1.4  6.8 6231104 273980 pts/10 Sl   15:04   0:02 dlv exec /go/src/github.com/kata-containers/kata-containers/src/runtime/__debug_bin --headless --listen=:12345 --accept-multiclient -r stdout:/tmp/shim_output_oMC6Jo -r stderr:/tmp/shim_output_oMC6Jo -- -namespace default -address  -publish-binary /usr/local/bin/crio -id 0bc23d2208d4ff8c407a80cd5635610e772cae36c73d512824490ef671be9293 -debug start
+```
+
+Then you can use the `dlv` debugger to connect to it:
+
+```
+$ dlv connect localhost:12345
+Type 'help' for list of commands.
+(dlv)
+```
+
+Before doing anything else, you need to to enable `follow-exec` mode in delve.
+This is because the first thing that the shim will do is to daemonize itself,
+i.e: start itself as a subprocess, and exit. So you really want the debugger
+to attach to the child process.
+
+```
+(dlv) target follow-exec -on .*/__debug_bin
+```
+
+Note that we are providing a regular expression to filter the name of the binary.
+This is to make sure that the debugger attaches to the runtime shim, and not
+to other subprocesses (hypervisor typically).
+
+To ease this process, we recommand the use of an init file containing the above
+command.
+
+```
+$ cat dlv.ini
+target follow-exec -on .*/__debug_bin
+$ dlv connect localhost:12345 --init=dlv.ini
+Type 'help' for list of commands.
+(dlv)
+```
+
+Once this is done, you can set breakpoints, and use the `continue` keyword to
+start the execution of the shim.
+
+You can also use a different client, like VSCode, to connect to it.
+A typical `launch.json` configuration for VSCode would look like:
+
+```yaml
+[...]
+{
+    "name": "Connect to the debugger",
+    "type": "go",
+    "request": "attach",
+    "mode": "remote",
+    "port": 12345,
+    "host": "127.0.0.1",
+}
+[...]
+```
+
+NOTE: VSCode's go extension doesn't seem to support the `follow-exec` mode from
+Delve. So if you want to use VScode, you'll still need to use a commandline
+`dlv` client to set the `follow-exec` flag.
+
+## Caveats
+
+Debugging takes time, and there are a lot of timeouts going on in a Kubernetes
+environments. It is very possible that while you're debugging, some processes
+will timeout and cancel the container execution, possibly breaking your debugging
+session.
+
+You can mitigate that by increasing the timeouts in the different components
+involved in your environment.
--- a/docs/Developer-Guide.md
+++ b/docs/Developer-Guide.md
@@ -29,7 +29,7 @@ to build the Kata Containers components from source.
 >
 > If you decide to build from sources, you should be aware of the
 > implications of using an unpackaged system which will not be automatically
-> updated as new [releases](Stable-Branch-Strategy.md) are made available.
+> updated as new [releases](https://github.com/kata-containers/kata-containers/releases) are made available.

 You need to install the following to build Kata Containers components:

@@ -461,7 +461,7 @@ and repository utilized can be found by looking at the [versions file](../versio
 Find the correct version of QEMU from the versions file:
 ```bash
 $ source kata-containers/tools/packaging/scripts/lib.sh
-$ qemu_version="$(get_from_kata_deps "assets.hypervisor.qemu.version")"
+$ qemu_version="$(get_from_kata_deps ".assets.hypervisor.qemu.version")"
 $ echo "${qemu_version}"
 ```
 Get source from the matching branch of QEMU:
@@ -771,6 +771,11 @@ $ sudo su -c 'cd /var/run/vc/vm/${sandbox_id} && socat "stdin,raw,echo=0,escape=
 To disconnect from the virtual machine, type `CONTROL+q` (hold down the
 `CONTROL` key and press `q`).

+## Use a debugger with the runtime
+
+For developers interested in using a debugger with the runtime, please
+look at [this document](Debug-shim-guide.md).
+
 ## Obtain details of the image

 If the image is created using
--- a/docs/README.md
+++ b/docs/README.md
@@ -40,6 +40,7 @@ Documents that help to understand and contribute to Kata Containers.
 ### Design and Implementations

 * [Kata Containers Architecture](design/architecture): Architectural overview of Kata Containers
+* [Kata Containers CI](../ci/README.md): Kata Containers CI document
 * [Kata Containers E2E Flow](design/end-to-end-flow.md): The entire end-to-end flow of Kata Containers
 * [Kata Containers design](./design/README.md): More Kata Containers design documents
 * [Kata Containers threat model](./threat-model/threat-model.md): Kata Containers threat model
@@ -49,6 +50,7 @@ Documents that help to understand and contribute to Kata Containers.
 * [Developer Guide](Developer-Guide.md): Setup the Kata Containers developing environments
 * [How to contribute to Kata Containers](https://github.com/kata-containers/community/blob/main/CONTRIBUTING.md)
 * [Code of Conduct](../CODE_OF_CONDUCT.md)
+* [How to submit a blog post](Blog-Post-Submission-Guide.md)

 ## Help Writing a Code PR

@@ -69,7 +71,6 @@ Documents that help to understand and contribute to Kata Containers.

 ### The Release Process

-* [Release strategy](Stable-Branch-Strategy.md)
 * [Release Process](Release-Process.md)

 ## Presentations
--- a/docs/Release-Process.md
+++ b/docs/Release-Process.md
@@ -5,6 +5,27 @@ This document lists the tasks required to create a Kata Release.

 - GitHub permissions to run workflows.

+## Versioning
+
+The Kata Containers project uses [semantic versioning](http://semver.org/) for all releases.
+Semantic versions are comprised of three fields in the form:
+
+```
+MAJOR.MINOR.PATCH
+```
+
+When `MINOR` increases, the new release adds **new features** but *without changing the existing behavior*.
+
+When `MAJOR` increases, the new release adds **new features, bug fixes, or
+both** and which **changes the behavior from the previous release** (incompatible with previous releases).
+
+A major release will also likely require a change of the container manager version used,
+-for example Containerd or CRI-O. Please refer to the release notes for further details.
+
+**Important** : the Kata Containers project doesn't have stable branches (see
+[this issue](https://github.com/kata-containers/kata-containers/issues/9064) for details).
+Bug fixes are released as part of `MINOR` or `MAJOR` releases only. `PATCH` is always `0`.
+
 ## Release Process

 ### Bump the `VERSION` file
@@ -21,7 +42,9 @@ release artifacts.

 The action is manually triggered and is responsible for generating a new
 release (including a new tag), pushing those to the
-`kata-containers/kata-containers` repository.
+`kata-containers/kata-containers` repository. The new release is initially
+created as a draft. It is promoted to an official release when the whole
+workflow has completed successfully.

 Check the [actions status
 page](https://github.com/kata-containers/kata-containers/actions) to verify all
@@ -29,6 +52,13 @@ steps in the actions workflow have completed successfully. On success, a static
 tarball containing Kata release artifacts will be uploaded to the [Release
 page](https://github.com/kata-containers/kata-containers/releases).

+If the workflow fails because of some external environmental causes, e.g. network
+timeout, simply re-run the failed jobs until they eventually succeed.
+
+If for some reason you need to cancel the workflow or re-run it entirely, go first
+to the [Release page](https://github.com/kata-containers/kata-containers/releases) and
+delete the draft release from the previous run.
+
 ### Improve the release notes

 Release notes are auto-generated by the GitHub CLI tool used as part of our
--- a/docs/Stable-Branch-Strategy.md
+++ b/docs/Stable-Branch-Strategy.md
@@ -1,151 +0,0 @@
-Branch and release maintenance for the Kata Containers project.
-
-## Introduction 
-
-This document provides details about Kata Containers releases.
-
-## Versioning
-
-The Kata Containers project uses [semantic versioning](http://semver.org/) for all releases. 
-Semantic versions are comprised of three fields in the form:
-
-```
-MAJOR.MINOR.PATCH
-```
-
-For examples: `1.0.0`, `1.0.0-rc.5`, and `99.123.77+foo.bar.baz.5`.
-
-Semantic versioning is used since the version number is able to convey clear 
-information about how a new version relates to the previous version. 
-For example, semantic versioning can also provide assurances to allow users to know 
-when they must upgrade compared with when they might want to upgrade:
-
- When `PATCH` increases, the new release contains important **security fixes**
-  and an upgrade is recommended.
-
-  The patch field can contain extra details after the number. 
-Dashes denote pre-release versions. `1.0.0-rc.5` in the example denotes the fifth release
- candidate for release `1.0.0`. Plus signs denote other details. In our example, `+foo.bar.baz.5` 
-provides additional information regarding release `99.123.77` in the previous example.
-
- When `MINOR` increases, the new release adds **new features** but *without
-  changing the existing behavior*.
-
- When `MAJOR` increases, the new release adds **new features, bug fixes, or
-  both** and which **changes the behavior from the previous release** (incompatible with previous releases).
-
-  A major release will also likely require a change of the container manager version used, 
-for example Containerd or CRI-O. Please refer to the release notes for further details.
-
-## Release Strategy
-
-Any new features added since the last release will be available in the next minor
-release. These will include bug fixes as well. To facilitate a stable user environment, 
-Kata provides stable branch-based releases and a main branch release.
-
-## Stable branch patch criteria
-
-No new features should be introduced to stable branches.  This is intended to limit risk to users,
-providing only bug and security fixes.
-
-## Branch Management
-Kata Containers will maintain **one** stable release branch, in addition to the main branch, for
-each active major release.
-Once a new MAJOR or MINOR release is created from main, a new stable branch is created for
-the prior MAJOR or MINOR release and the previous stable branch is no longer maintained. End of
-maintenance for a branch is announced on the Kata Containers mailing list.  Users can determine
-the version currently installed by running `kata-runtime kata-env`. It is recommended to use the
-latest stable branch available.
-
-A couple of examples follow to help clarify this process.
-
-### New bug fix introduced
-
-A bug fix is submitted against the runtime which does not introduce new inter-component dependencies.
-This fix is applied to both the main and stable branches, and there is no need to create a new
-stable branch.
-
-| Branch | Original version | New version |
-|--|--|--|
-| `main` | `2.3.0-rc0` | `2.3.0-rc1` |
-| `stable-2.2` | `2.2.0` | `2.2.1` |
-| `stable-2.1` | (unmaintained) | (unmaintained) |
-
-
-### New release made feature or change adding new inter-component dependency
-
-A new feature is introduced, which adds a new inter-component dependency. In this case a new stable
-branch is created (stable-2.3) starting from main and the previous stable branch (stable-2.2)
-is dropped from maintenance.
-
-
-| Branch | Original version | New version |
-|--|--|--|
-| `main` | `2.3.0-rc1` | `2.3.0` |
-| `stable-2.3` | N/A| `2.3.0` |
-| `stable-2.2` | `2.2.1` | (unmaintained) |
-| `stable-2.1` | (unmaintained) | (unmaintained) |
-
-Note, the stable-2.2 branch will still exist with tag 2.2.1, but under current plans it is
-not maintained further. The next tag applied to main will be 2.4.0-alpha0. We would then
-create a couple of alpha releases gathering features targeted for that particular release (in
-this case 2.4.0), followed by a release candidate. The release candidate marks a feature freeze.
-A new stable branch is created for the release candidate. Only bug fixes and any security issues
-are added to the branch going forward until release 2.4.0 is made.
-   
-## Backporting Process 
-
-Development that occurs against the main branch and applicable code commits should also be submitted
-against the stable branches. Some guidelines for this process follow::
-  1. Only bug and security fixes which do not introduce inter-component dependencies are
- candidates for stable branches. These PRs should be marked with "bug" in GitHub.
-  2. Once a PR is created against main which meets requirement of (1), a comparable one
- should also be submitted against the stable branches. It is the responsibility of the submitter
- to apply their pull request against stable, and it is the responsibility of the
- reviewers to help identify stable-candidate pull requests.
- 
-## Continuous Integration Testing
-
-The test repository is forked to create stable branches from main. Full CI
-runs on each stable and main PR using its respective tests repository branch.
-
-### An alternative method for CI testing:
-
-Ideally, the continuous integration infrastructure will run the same test suite on both main
-and the stable branches.  When tests are modified or new feature tests are introduced, explicit
-logic should exist within the testing CI to make sure only applicable tests are executed against
-stable and main. While this is not in place currently, it should be considered in the long term.
-
-## Release Management
-
-### Patch releases
-
-Releases are made every four weeks, which include a GitHub release as
-well as binary packages. These patch releases are made for both stable branches, and a "release candidate"
-for the next `MAJOR` or `MINOR` is created from main. If there are no changes across all the repositories, no
-release is created and an announcement is made on the developer mailing list to highlight this.
-If a release is being made, each repository is tagged for this release, regardless
-of whether changes are introduced. The release schedule can be seen on the
-[release rotation wiki page](https://github.com/kata-containers/community/wiki/Release-Team-Rota).
-
-If there is urgent need for a fix, a patch release will be made outside of the planned schedule.
-
-The process followed for making a release can be found at [Release Process](Release-Process.md).
-
-## Minor releases
-
-###  Frequency
-Minor releases are less frequent in order to provide a more stable baseline for users. They are currently
-running on a sixteen weeks cadence. The release schedule can be seen on the
-[release rotation wiki page](https://github.com/kata-containers/community/wiki/Release-Team-Rota).
-
-### Compatibility
-Kata guarantees compatibility between components that are within one minor release of each other. 
- 
-This is critical for dependencies which cross between host (shimv2 runtime) and
-the guest (hypervisor, rootfs and agent).  For example, consider a cluster with a long-running
-deployment, workload-never-dies, all on Kata version 2.1.3 components. If the operator updates
-the Kata components to the next new minor release (i.e. 2.2.0), we need to guarantee that the 2.2.0
-shimv2 runtime still communicates with 2.1.3 agent within workload-never-dies.
-
-Handling live-update is out of the scope of this document. See this [`kata-runtime` issue](https://github.com/kata-containers/runtime/issues/492) for details.
--- a/docs/Upgrading.md
+++ b/docs/Upgrading.md
@@ -14,9 +14,6 @@ period of time, once a stable release for Kata Containers 2.x is published,
 Kata Containers 1.x stable users should consider switching to the Kata 2.x
 release.

-See the [stable branch strategy documentation](Stable-Branch-Strategy.md) for
-further details.
-
 # Determine current version

 To display the current Kata Containers version, run one of the following:
--- a/docs/code-pr-advice.md
+++ b/docs/code-pr-advice.md
@@ -173,7 +173,7 @@ allows you to think about what types of value to test.

 Raised a GitHub issue in the Kata Containers repository that
 explains what sort of test is required along with as much detail as
-possible. Ensure the original issue is referenced on the `tests` issue.
+possible. Ensure the original issue is referenced in the issue.

 ### Unsafe code

--- a/docs/design/arch-images/guest-image-management-architecture.png
+++ b/docs/design/arch-images/guest-image-management-architecture.png
--- a/docs/design/arch-images/guest-image-management-details.png
+++ b/docs/design/arch-images/guest-image-management-details.png
--- a/docs/design/kata-guest-image-management-design.md
+++ b/docs/design/kata-guest-image-management-design.md
@@ -0,0 +1,119 @@
+# Kata Containers Guest Image Management Design
+
+To safeguard the integrity of container images and prevent tampering from the host side, we propose guest image management. This method, employed for Confidential Containers, ensures container images remain unaltered and secure.
+
+## Introduction to remote snapshot
+Containerd 1.7 introduced `remote snapshotter` feature which is the foundation for pulling images in the guest for Confidential Containers.
+
+While it's beyond the scope of this document to fully explain how the container rootfs is created to the point it can be executed,  a fundamental grasp of the snapshot concept is essential. Putting it in a simple way, containerd fetches the image layers from an OCI registry into its local content storage. However, they cannot be mounted as is (e.g. the layer can be tar+gzip compressed) as well as they should be immutable so the content can be shared among containers. Thus containerd leverages snapshots of those layers to build the container's rootfs. 
+
+The role of `remote snapshotter` is to reuse snapshots that are stored in a remotely shared place, thus enabling containerd to prepare the container’s rootfs in a manner similar to that of a local `snapshotter`. The key behavior that makes this the building block of Kata's guest image management for Confidential Containers is that containerd will not pull the image layers from registry, instead it assumes that `remote snapshotter` and/or an external entity will perform that operation on his behalf.
+
+Maybe the simplest example of `remote snapshotter` in Confidential Containers is the pulling of images in the guest VM. Once ensuring the VM is part of a Trusted Computing Base (TCB) and  throughout a chain of delegations involving containerd, `remote snapshotter` and kata-runtime, it is possible for the kata-agent to pull the image directly.
+## `Remote snapshotter` implementations
+`Remote snapshotter` is containerd plug-ins that should implement the [Snapshot Interface](https://pkg.go.dev/github.com/containerd/containerd/v2/snapshots?utm_source=godoc#Snapshotter).
+
+The following `remote snapshotter` is leveraged by Kata Containers:
+- `nydus snapshotter`
+### `Nydus snapshotter`
+This `snapshotter` is implemented as an external containerd proxy plug-in for [`Nydus`](https://nydus.dev/).
+
+Currently it supports a couple of runtime backend, notably, `FUSE`, `virtiofs`, and `EROFS`, being the former leveraged on the tested Kata Containers CI.
+
+## `Nydus snapshotter` and containerd-shim-v2 integration
+
+```go
+// KataVirtualVolume encapsulates information for extra mount options and direct volumes.
+type KataVirtualVolume struct {
+   VolumeType   string                `json:"volume_type"`
+   Source       string                `json:"source,omitempty"`
+   FSType       string                `json:"fs_type,omitempty"`
+   Options      []string              `json:"options,omitempty"`
+   DirectVolume *DirectAssignedVolume `json:"direct_volume,omitempty"`
+   ImagePull    *ImagePullVolume      `json:"image_pull,omitempty"`   //<-Used for pulling images in the guest
+   NydusImage   *NydusImageVolume     `json:"nydus_image,omitempty"`
+   DmVerity     *DmVerityInfo         `json:"dm_verity,omitempty"`
+}
+```
+
+## Guest image management implementations
+### Guest pull with `nydus snapshotter`
+Pull the container image directly from the guest VM using `nydus snapshotter` backend.
+#### General Characteristics
+- Container image pulled in the guest
+- Pause image should be built in the guest's rootfs
+- Confidentiality for image manifest and config: No
+- Confidentiality for blob data: Yes
+- Use `nydus snapshotter` as `remote snapshotter` configured with the FUSE runtime backend
+
+#### Architecture
+
+The following diagram provides an overview of the architecture for pulling image in the guest with key components. 
+![guest-image-management-architecture](arch-images/guest-image-management-architecture.png)
+
+#### Sequence diagrams
+
+The following sequence diagram depicted below offers a detailed overview of the messages/calls exchanged to pull an unencrypted unsigned image from an unauthenticated container registry. This involves the kata-runtime, kata-agent, and the guest-components’ image-rs to use the guest pull mechanism.
+
+![guest-image-management-details](arch-images/guest-image-management-details.png)
+
+First and foremost, the guest pull code path is only activated when `nydus snapshotter` requires the handling of a volume which type is `image_guest_pull`, as can be seen on the message below:
+```json
+{
+  {
+  "volume_type": "image_guest_pull",
+  "source":"quay.io/kata-containers/confidential-containers:unsigned",
+  "fs_type":"overlayfs"
+  "options": [
+    "containerd.io/snapshot/cri.layer-digest=sha256:24fb2886d6f6c5d16481dd7608b47e78a8e92a13d6e64d87d57cb16d5f766d63",
+    "containerd.io/snapshot/nydus-proxy-mode=true"
+  ],
+  "image_pull": {
+    "metadata": {
+      "containerd.io/snapshot/cri.layer-digest": "sha256:24fb2886d6f6c5d16481dd7608b47e78a8e92a13d6e64d87d57cb16d5f766d63",
+      "containerd.io/snapshot/nydus-proxy-mode": "true"
+         }
+       }
+  }
+}
+```
+In other words, `VolumeType` of `KataVirtualVolumeType` is set to `image_guest_pull`.
+
+Next the `handleImageGuestPullBlockVolume()` is called to build the Storage object that will be attached to the message later sent to kata-agent via the `CreateContainerRequest()` RPC. It is in the `handleImageGuestPullBlockVolume()` that it will begin the handling of the pause image if the request is for a sandbox container type (see more about pause image below).
+
+Below is an example of storage information packaged in the message sent to the kata-agent:
+
+```json
+"driver": "image_guest_pull", 
+    "driver_options": [
+        "image_guest_pull"{
+            "metadata":{
+                "containerd.io/snapshot/cri.layer-digest": "sha256:24fb2886d6f6c5d16481dd7608b47e78a8e92a13d6e64d87d57cb16d5f766d63",
+                "containerd.io/snapshot/nydus-proxy-mode": "true",
+                "io.katacontainers.pkg.oci.bundle_path": "/run/containerd/io.containerd.runtime.v2.task/k8s.io/cb0b47276ea66ee9f44cc53afa94d7980b57a52c3f306f68cb034e58d9fbd3c6",
+                "io.katacontainers.pkg.oci.container_type": "pod_container",
+                "io.kubernetes.cri.container-name": "coco-container",
+                "io.kubernetes.cri.container-type": "container",
+                "io.kubernetes.cri.image-name": "quay.io/kata-containers/confidential-containers:unsigned",
+                "io.kubernetes.cri.sandbox-id":"7a0d058477e280604ae02de6a016959e8a05fcd3165c47af41eabcf205b55517",
+                "io.kubernetes.cri.sandbox-name": "coco-pod","io.kubernetes.cri.sandbox-namespace": "default",
+                "io.kubernetes.cri.sandbox-uid": "de7c6a0c-79c0-44dc-a099-69bb39f180af",
+            }
+        }
+    ], 
+    "source": "quay.io/kata-containers/confidential-containers:unsigned", 
+    "fstype": "overlay", 
+    "options": [], 
+    "mount_point": "/run/kata-containers/cb0b47276ea66ee9f44cc53afa94d7980b57a52c3f306f68cb034e58d9fbd3c6/rootfs",
+```
+Next, the kata-agent's RPC module will handle the create container request which, among other things, involves adding storages to the sandbox. The storage module contains implementations of `StorageHandler` interface for various storage types, being the `ImagePullHandler` in charge of handling the storage object for the container image (the storage manager instantiates the handler based on the value of the "driver").
+
+`ImagePullHandler` delegates the image pulling operation to the `ImageService.pull_image()` that is going to create the image's bundle directory on the guest filesystem and, in turn, class the image-rs to in fact fetch and uncompress the image's bundle. 
+
+> **Notes:**
+> In this flow, `ImageService.pull_image()` parses the image metadata, looking for either the `io.kubernetes.cri.container-type: sandbox` or `io.kubernetes.cri-o.ContainerType: sandbox` (CRI-IO case) annotation, then it never calls the `image-rs.pull_image()` because the pause image is expected to already be inside the guest's filesystem, so instead `ImageService.unpack_pause_image()` is called.
+
+References:
+[1] [[RFC] Image management proposal for hosting sharing and peer pods](https://github.com/confidential-containers/confidential-containers/issues/137)
+[2] https://github.com/containerd/containerd/blob/main/docs/content-flow.md
+
--- a/docs/how-to/README.md
+++ b/docs/how-to/README.md
@@ -51,4 +51,5 @@
 - [How to run Kata Containers with IBM Secure Execution](how-to-run-kata-containers-with-SE-VMs.md)
 - [How to use EROFS to build rootfs in Kata Containers](how-to-use-erofs-build-rootfs.md)
 - [How to run Kata Containers with kinds of Block Volumes](how-to-run-kata-containers-with-kinds-of-Block-Volumes.md)
- [How to use the Kata Agent Policy](how-to-use-the-kata-agent-policy.md)
+- [How to use the Kata Agent Policy](how-to-use-the-kata-agent-policy.md)
+- [How to pull images in the guest](how-to-pull-images-in-guest-with-kata.md)
--- a/docs/how-to/how-to-pull-images-in-guest-with-kata.md
+++ b/docs/how-to/how-to-pull-images-in-guest-with-kata.md
@@ -0,0 +1,176 @@
+# Kata Containers with Guest Image Management
+
+Kata Containers 3.3.0 introduces the guest image management feature, which enables the guest VM to directly pull images using `nydus snapshotter`. This feature is designed to protect the integrity of container images and guard against any tampering by the host, which is used for confidential containers. Please refer to [kata-guest-image-management-design](../design/kata-guest-image-management-design.md) for details.
+
+## Prerequisites
+- The k8s cluster with Kata 3.3.0+ is ready to use.
+- `yq` is installed in the host and it's directory is included in the `PATH` environment variable. (optional, for DaemonSet only)
+
+## Deploy `nydus snapshotter` for guest image management
+
+To pull images in the guest, we need to do the following steps:
+1. Delete images used for pulling in the guest (optional, for containerd only)
+2. Install `nydus snapshotter`:
+   1. Install `nydus snapshotter` by k8s DaemonSet (recommended)
+   2. Install `nydus snapshotter` manually
+
+### Delete images used for pulling in the guest
+
+Though the `CRI Runtime Specific Snapshotter` is still an [experimental feature](https://github.com/containerd/containerd/blob/main/RELEASES.md#experimental-features) in containerd, which containerd is not supported to manage the same image in different `snapshotters`(The default `snapshotter` in containerd is `overlayfs`). To avoid errors caused by this, it is recommended to delete images (including the pause image) in containerd that needs to be pulled in guest later before configuring `nydus snapshotter` in containerd. 
+
+### Install `nydus snapshotter`
+
+#### Install `nydus snapshotter` by k8s DaemonSet (recommended)
+
+To use DaemonSet to install `nydus snapshotter`, we need to ensure that `yq` exists in the host.
+
+1. Download `nydus snapshotter` repo 
+```bash
+$ nydus_snapshotter_install_dir="/tmp/nydus-snapshotter"
+$ nydus_snapshotter_url=https://github.com/containerd/nydus-snapshotter
+$ nydus_snapshotter_version="v0.13.11"
+$ git clone -b "${nydus_snapshotter_version}" "${nydus_snapshotter_url}" "${nydus_snapshotter_install_dir}"
+```
+
+2. Configure DaemonSet file
+```bash
+$ pushd "$nydus_snapshotter_install_dir"
+$ yq -i \
+>	 '.data.FS_DRIVER = "proxy"' -P \
+>	 misc/snapshotter/base/nydus-snapshotter.yaml
+# Disable to read snapshotter config from configmap
+$ yq -i \
+>	 'data.ENABLE_CONFIG_FROM_VOLUME = "false"' -P \
+>	 misc/snapshotter/base/nydus-snapshotter.yaml
+# Enable to run snapshotter as a systemd service 
+# (skip if you want to run nydus snapshotter as a standalone process)
+$ yq -i \
+>	 'data.ENABLE_SYSTEMD_SERVICE = "true"' -P \
+>	 misc/snapshotter/base/nydus-snapshotter.yaml
+# Enable "runtime specific snapshotter" feature in containerd when configuring containerd for snapshotter
+# (skip if you want to configure nydus snapshotter as a global snapshotter in containerd)
+$ yq -i \
+>	 'data.ENABLE_RUNTIME_SPECIFIC_SNAPSHOTTER = "true"' -P \
+>	 misc/snapshotter/base/nydus-snapshotter.yaml
+```
+
+3. Install `nydus snapshotter` as a DaemonSet
+```bash
+$ kubectl create -f "misc/snapshotter/nydus-snapshotter-rbac.yaml"
+$ kubectl apply -f "misc/snapshotter/base/nydus-snapshotter.yaml"
+```
+
+4. Wait 5 minutes until the DaemonSet is running
+```bash
+$ kubectl rollout status DaemonSet nydus-snapshotter -n nydus-system --timeout 5m
+```
+
+5. Verify whether `nydus snapshotter` is running as a DaemonSet
+```bash
+$ pods_name=$(kubectl get pods --selector=app=nydus-snapshotter -n nydus-system -o=jsonpath='{.items[*].metadata.name}')
+$ kubectl logs "${pods_name}" -n nydus-system
+deploying snapshotter
+install nydus snapshotter artifacts
+configuring snapshotter
+Not found nydus proxy plugin!
+running snapshotter as systemd service
+Created symlink /etc/systemd/system/multi-user.target.wants/nydus-snapshotter.service → /etc/systemd/system/nydus-snapshotter.service.
+```
+
+#### Install `nydus snapshotter` manually
+
+1. Download `nydus snapshotter` binary from release 
+```bash
+$ ARCH=$(uname -m)
+$ golang_arch=$(case "$ARCH" in
+    aarch64) echo "arm64" ;;
+    ppc64le) echo "ppc64le" ;;
+    x86_64) echo "amd64" ;;
+    s390x) echo "s390x" ;;
+esac)
+$ release_tarball="nydus-snapshotter-${nydus_snapshotter_version}-linux-${golang_arch}.tar.gz"
+$ curl -OL ${nydus_snapshotter_url}/releases/download/${nydus_snapshotter_version}/${release_tarball}
+$ sudo tar -xfz ${release_tarball} -C /usr/local/bin --strip-components=1
+```
+
+2. Download `nydus snapshotter` configuration file for pulling images in the guest
+```bash
+$ curl -OL https://github.com/containerd/nydus-snapshotter/blob/main/misc/snapshotter/config-proxy.toml
+$ sudo install -D -m 644 config-proxy.toml /etc/nydus/config-proxy.toml
+```
+
+3. Run `nydus snapshotter` as a standalone process
+```bash
+$ /usr/local/bin/containerd-nydus-grpc --config /etc/nydus/config-proxy.toml --log-to-stdout
+level=info msg="Start nydus-snapshotter. Version: v0.13.11-308-g106a6cb, PID: 1100169, FsDriver: proxy, DaemonMode: none"
+level=info msg="Run daemons monitor..."
+```
+
+4. Configure containerd for `nydus snapshotter`
+
+Configure `nydus snapshotter` to enable `CRI Runtime Specific Snapshotter` in containerd. This ensures run kata containers with `nydus snapshotter`. Below, the steps are illustrated using `kata-qemu` as an example.
+
+```toml
+# Modify containerd configuration to ensure that the following lines appear in the containerd configuration 
+# (Assume that the containerd config is located in /etc/containerd/config.toml)
+
+[plugins."io.containerd.grpc.v1.cri".containerd]
+  disable_snapshot_annotations = false
+  discard_unpacked_layers = false
+[proxy_plugins.nydus]
+  type = "snapshot"
+  address = "/run/containerd-nydus/containerd-nydus-grpc.sock"
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.kata-qemu]
+  snapshotter = "nydus"
+```
+
+> **Notes:** 
+> The `CRI Runtime Specific Snapshotter` feature only works for containerd v1.7.0 and above. So for Containerd v1.7.0 below, in addition to the above settings, we need to set the global `snapshotter` to `nydus` in containerd config. For example:
+
+```toml
+[plugins."io.containerd.grpc.v1.cri".containerd]
+snapshotter = "nydus"
+```
+
+5. Restart containerd service
+```bash
+$ sudo systemctl restart containerd
+```
+
+## Verification
+
+To verify pulling images in a guest VM, please refer to the following commands:
+
+1. Run a kata container
+```bash
+$ cat <<EOF | kubectl apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox
+  annotations:
+    io.containerd.cri.runtime-handler: kata-qemu
+spec:
+  runtimeClassName: kata-qemu
+  containers:
+  - name: busybox
+    image: quay.io/prometheus/busybox:latest
+    imagePullPolicy: Always
+EOF
+pod/busybox created
+$ kubectl get pods
+NAME         READY   STATUS    RESTARTS   AGE
+busybox      1/1     Running   0          10s
+```
+
+> **Notes:** 
+> The `CRI Runtime Specific Snapshotter` is still an experimental feature. To pull images in the guest under the specific kata runtime (such as `kata-qemu`), we need to add the following annotation in metadata to each pod yaml: `io.containerd.cri.runtime-handler: kata-qemu`. By adding the annotation, we can ensure that the feature works as expected.
+
+2. Verify that the pod's images have been successfully downloaded in the guest.
+If images intended for deployment are deleted prior to deploying with `nydus snapshotter`, the root filesystems required for the pod's images (including the pause image and the container image) should not be present on the host.
+```bash
+$ sandbox_id=$(ps -ef| grep containerd-shim-kata-v2| grep -oP '(?<=-id\s)[a-f0-9]+'| tail -1)
+$ rootfs_count=$(find /run/kata-containers/shared/sandboxes/$sandbox_id -name rootfs -type d| grep -o "rootfs" | wc -l)
+$ echo $rootfs_count
+0
+```
--- a/docs/how-to/how-to-run-kata-containers-with-SE-VMs.md
+++ b/docs/how-to/how-to-run-kata-containers-with-SE-VMs.md
@@ -62,17 +62,25 @@ $ export PATH="$PATH:/opt/kata/bin"
 $ ls -1 $(dirname $(kata-runtime env --json | jq -r '.Kernel.Path'))
 config-6.1.62-121
 kata-containers.img
+kata-containers-confidential.img
 kata-containers-initrd.img
+kata-containers-initrd-confidential.img
 kata-ubuntu-20.04.initrd
+kata-ubuntu-20.04-confidential.initrd
 kata-ubuntu-latest.image
+kata-ubuntu-latest-confidential.image
 vmlinux-6.1.62-121
+vmlinux-6.1.62-121-confidential
 vmlinux.container
+vmlinux-confidential.container
 vmlinuz-6.1.62-121
+vmlinuz-6.1.62-121-confidential
 vmlinuz.container
+vmlinuz-confidential.container
 ```

-The output indicates the deployment of the kernel (`vmlinux-6.1.62-121`, though the version
-may vary at the time of testing), rootfs-image (`kata-ubuntu-latest.image`), and rootfs-initrd (`kata-ubuntu-20.04.initrd`).
+The output indicates the deployment of the kernel (`vmlinux-6.1.62-121-confidential`, though the version
+may vary at the time of testing), rootfs-image (`kata-ubuntu-latest-confidential.image`), and rootfs-initrd (`kata-ubuntu-20.04-confidential.initrd`).
 In this scenario, the available kernel and initrd can be utilized for a secure image.
 However, if any of these components are absent, they must be built from the
 [project source](https://github.com/kata-containers/kata-containers) as follows:
@@ -80,19 +88,19 @@ However, if any of these components are absent, they must be built from the
 ```
 $ # Assume that the project is cloned at $GOPATH/src/github.com/kata-containers
 $ cd $GOPATH/src/github.com/kata-containers/kata-containers
-$ sudo -E PATH=$PATH make kernel-tarball
-$ sudo -E PATH=$PATH make rootfs-initrd-tarball
-$ tar -tf build/kata-static-kernel.tar.xz | grep vmlinuz
-./opt/kata/share/kata-containers/vmlinuz.container
-./opt/kata/share/kata-containers/vmlinuz-6.1.62-121
-$ tar -tf build/kata-static-rootfs-initrd.tar.xz | grep initrd
-./opt/kata/share/kata-containers/kata-containers-initrd.img
-./opt/kata/share/kata-containers/kata-ubuntu-20.04.initrd
+$ sudo -E PATH=$PATH make kernel-confidential-tarball
+$ sudo -E PATH=$PATH make rootfs-initrd-confidential-tarball
+$ tar -tf build/kata-static-kernel-confidential.tar.xz | grep vmlinuz
+./opt/kata/share/kata-containers/vmlinuz-confidential.container
+./opt/kata/share/kata-containers/vmlinuz-6.1.62-121-confidential
+$ tar -tf build/kata-static-rootfs-initrd-confidential.tar.xz | grep initrd
+./opt/kata/share/kata-containers/kata-containers-initrd-confidential.img
+./opt/kata/share/kata-containers/kata-ubuntu-20.04-confidential.initrd
 $ mkdir artifacts
-$ tar -xvf build/kata-static-kernel.tar.xz -C artifacts ./opt/kata/share/kata-containers/vmlinuz-6.1.62-121
-$ tar -xvf build/kata-static-rootfs-initrd.tar.xz -C artifacts ./opt/kata/share/kata-containers/kata-ubuntu-20.04.initrd
+$ tar -xvf build/kata-static-kernel-confidential.tar.xz -C artifacts ./opt/kata/share/kata-containers/vmlinuz-6.1.62-121-confidential
+$ tar -xvf build/kata-static-rootfs-initrd-confidential.tar.xz -C artifacts ./opt/kata/share/kata-containers/kata-ubuntu-20.04-confidential.initrd
 $ ls artifacts/opt/kata/share/kata-containers/
-kata-ubuntu-20.04.initrd  vmlinuz-6.1.62-121
+kata-ubuntu-20.04-confidential.initrd  vmlinuz-6.1.62-121-confidential
 ```

 3. Secure Image Generation Tool
@@ -131,7 +139,6 @@ These files will be used for verification during secure image construction in th

 ### Build a Secure Image

-
 Assuming you have placed a host key document at `$HOME/host-key-document`:

 - Host key document as `HKD-0000-0000000.crt`
@@ -147,8 +154,8 @@ you can construct a secure image using the following procedure:
 $ # Change a directory to the project root
 $ cd $GOPATH/src/github.com/kata-containers/kata-containers
 $ host_key_document=$HOME/host-key-document/HKD-0000-0000000.crt
-$ kernel_image=artifacts/opt/kata/share/kata-containers/vmlinuz-6.1.62-121
-$ initrd_image=artifacts/opt/kata/share/kata-containers/kata-ubuntu-20.04.initrd
+$ kernel_image=artifacts/opt/kata/share/kata-containers/vmlinuz-6.1.62-121-confidential
+$ initrd_image=artifacts/opt/kata/share/kata-containers/kata-ubuntu-20.04-confidential.initrd
 $ echo "panic=1 scsi_mod.scan=none swiotlb=262144 agent.log=debug" > parmfile
 $ genprotimg --host-key-document=${host_key_document} \
 --output=kata-containers-se.img --image=${kernel_image} --ramdisk=${initrd_image} \
@@ -224,10 +231,6 @@ $ diff ${runtime_config_path}.old ${runtime_config_path}
 < dial_timeout = 45
 ---
 > dial_timeout = 90
-679c679
-< #service_offload = true
---
-> service_offload = true
 ```

 ### Verification
@@ -323,7 +326,7 @@ for confidential containers.
 $ cd $GOPATH/src/github.com/kata-containers/kata-containers
 $ host_key_document=$HOME/host-key-document/HKD-0000-0000000.crt
 $ mkdir hkd_dir && cp $host_key_document hkd_dir
-$ # kernel and rootfs-initrd are built automactially by the command below
+$ # kernel-confidential and rootfs-initrd-confidential are built automactially by the command below
 $ sudo -E PATH=$PATH HKD_PATH=hkd_dir SE_KERNEL_PARAMS="agent.log=debug" \
 make boot-image-se-tarball
 $ sudo -E PATH=$PATH make qemu-tarball
@@ -334,10 +337,13 @@ $ mkdir kata-artifacts
 $ build_dir=$(readlink -f build)
 $ cp -r $build_dir/*.tar.xz kata-artifacts
 $ ls -1 kata-artifacts
+kata-static-agent.tar.xz
 kata-static-boot-image-se.tar.xz
-kata-static-kernel.tar.xz
+kata-static-coco-guest-components.tar.xz
+kata-static-kernel-confidential.tar.xz
+kata-static-pause-image.tar.xz
 kata-static-qemu.tar.xz
-kata-static-rootfs-initrd.tar.xz
+kata-static-rootfs-initrd-confidential.tar.xz
 kata-static-shim-v2.tar.xz
 kata-static-virtiofsd.tar.xz
 $ ./tools/packaging/kata-deploy/local-build/kata-deploy-merge-builds.sh kata-artifacts
--- a/docs/how-to/how-to-run-kata-containers-with-SNP-VMs.md
+++ b/docs/how-to/how-to-run-kata-containers-with-SNP-VMs.md
@@ -44,8 +44,8 @@ $ popd
 - Build a custom QEMU
 ```bash
 $ source kata-containers/tools/packaging/scripts/lib.sh
-$ qemu_url="$(get_from_kata_deps "assets.hypervisor.qemu-snp-experimental.url")"
-$ qemu_tag="$(get_from_kata_deps "assets.hypervisor.qemu-snp-experimental.tag")"
+$ qemu_url="$(get_from_kata_deps ".assets.hypervisor.qemu-snp-experimental.url")"
+$ qemu_tag="$(get_from_kata_deps ".assets.hypervisor.qemu-snp-experimental.tag")"
 $ git clone "${qemu_url}"
 $ pushd qemu
 $ git checkout "${qemu_tag}"
--- a/docs/how-to/how-to-set-sandbox-config-kata.md
+++ b/docs/how-to/how-to-set-sandbox-config-kata.md
@@ -27,6 +27,7 @@ There are several kinds of Kata configurations and they are listed below.
 | `io.katacontainers.config.runtime.internetworking_model` | string| determines how the VM should be connected to the container network interface. Valid values are `macvtap`, `tcfilter` and `none` |
 | `io.katacontainers.config.runtime.sandbox_cgroup_only`| `boolean` | determines if Kata processes are managed only in sandbox cgroup |
 | `io.katacontainers.config.runtime.enable_pprof` | `boolean` | enables Golang `pprof` for `containerd-shim-kata-v2` process |
+| `io.katacontainers.config.runtime.create_container_timeout` | `uint64` | the timeout for create a container in `seconds`, default is `60` |

 ## Agent Options
 | Key | Value Type | Comments |
--- a/docs/hypervisors.md
+++ b/docs/hypervisors.md
@@ -60,7 +60,7 @@ are available, their default values and how each setting can be used.
 | [ACRN] | [`configuration-acrn.toml`](../src/runtime/config/configuration-acrn.toml.in) | `acrn` | | | | |
 | [Cloud Hypervisor] | [`configuration-clh.toml`](../src/runtime/config/configuration-clh.toml.in) | `clh` | | [`configuration-cloud-hypervisor.toml`](../src/runtime-rs/config/configuration-cloud-hypervisor.toml.in) | `cloud-hypervisor` | |
 | [Firecracker] | [`configuration-fc.toml`](../src/runtime/config/configuration-fc.toml.in) | `fc` | | | | |
-| [QEMU] | [`configuration-qemu.toml`](../src/runtime/config/configuration-qemu.toml.in) | `qemu` | yes | [`configuration-qemu.toml`](../src/runtime-rs/config/configuration-qemu.toml.in) | `qemu` | |
+| [QEMU] | [`configuration-qemu.toml`](../src/runtime/config/configuration-qemu.toml.in) | `qemu` | yes | [`configuration-qemu.toml`](../src/runtime-rs/config/configuration-qemu-runtime-rs.toml.in) | `qemu` | |
 | [`Dragonball`] | | | | [`configuration-dragonball.toml`](../src/runtime-rs/config/configuration-dragonball.toml.in) | `dragonball` | yes |
 | [StratoVirt] | [`configuration-stratovirt.toml`](../src/runtime/config/configuration-stratovirt.toml.in) | `stratovirt` | | | | |

--- a/docs/install/README.md
+++ b/docs/install/README.md
@@ -5,7 +5,7 @@ The following is an overview of the different installation methods available.
 ## Prerequisites

 Kata Containers requires nested virtualization or bare metal. Check 
-[hardware requirements](/src/runtime/README.md#hardware-requirements) to see if your system is capable of running Kata 
+[hardware requirements](./../../README.md#hardware-requirements) to see if your system is capable of running Kata 
 Containers.

 ## Packaged installation methods
--- a/docs/threat-model/threat-model.md
+++ b/docs/threat-model/threat-model.md
@@ -1,95 +1,157 @@
 # Kata Containers threat model

-This document discusses threat models associated with the Kata Containers project.
-Kata was designed to provide additional isolation of container workloads, protecting
-the host infrastructure from potentially malicious container users or workloads. Since
-Kata Containers adds a level of isolation on top of traditional containers, the focus
-is on the additional layer provided, not on traditional container security.
+This document discusses threat models associated with the Kata Containers
+project. Kata was designed to provide additional isolation of container
+workloads, protecting the host infrastructure from potentially malicious
+container users or workloads. Since Kata Containers adds a level of isolation on
+top of traditional containers, the focus is on the additional layer provided,
+not on traditional container security.

-This document provides a brief background on containers and layered security, describes
-the interface to Kata from CRI runtimes, a review of utilized virtual machine interfaces, and then
-a review of threats.
+This document provides a brief background on containers and layered security,
+describes the interface to Kata from CRI runtimes, a review of utilized virtual
+machine interfaces, and then a review of threats.

 ## Kata security objective

-Kata seeks to prevent an untrusted container workload or user of that container workload to gain
-control of, obtain information from, or tamper with the host infrastructure.
+Kata seeks to prevent an untrusted container workload or user of that container
+workload to gain control of, obtain information from, or tamper with the host
+infrastructure.

-In our scenario, an asset is anything on the host system, or elsewhere in the cluster
-infrastructure. The attacker is assumed to be either a malicious user or the workload itself
-running within the container. The goal of Kata is to prevent attacks which would allow
-any access to the defined assets.
+In our scenario, an asset is anything on the host system, or elsewhere in the
+cluster infrastructure. The attacker is assumed to be either a malicious user or
+the workload itself running within the container. The goal of Kata is to prevent
+attacks which would allow any access to the defined assets.

 ## Background on containers, layered security

-Traditional containers leverage several key Linux kernel features to provide isolation and
-a view that the container workload is the only entity running on the host. Key features include
-`Namespaces`, `cgroups`, `capablities`, `SELinux` and `seccomp`. The canonical runtime for creating such
-a container is `runc`. In the remainder of the document, the term `traditional-container` will be used
-to describe a container workload created by runc.
+Traditional containers leverage several key Linux kernel features to provide
+isolation and a view that the container workload is the only entity running on
+the host. Key features include `Namespaces`, `cgroups`, `capablities`, `SELinux`
+and `seccomp`. The canonical runtime for creating such a container is `runc`. In
+the remainder of the document, the term `traditional-container` will be used to
+describe a container workload created by runc.

-Kata Containers provides a second layer of isolation on top of those provided by traditional-containers.
-The hardware virtualization interface is the basis of this additional layer. Kata launches a lightweight
-virtual machine, and uses the guest’s Linux kernel to create a container workload, or workloads in the case
-of multi-container pods. In Kubernetes and in the Kata implementation, the sandbox is carried out at the
-pod level. In Kata, this sandbox is created using a virtual machine.
+Kata Containers provides a second layer of isolation on top of those provided by
+traditional-containers. The hardware virtualization interface is the basis of
+this additional layer. Kata launches a lightweight virtual machine, and uses the
+guest’s Linux kernel to create a container workload, or workloads in the case of
+multi-container pods. In Kubernetes and in the Kata implementation, the sandbox
+is carried out at the pod level. In Kata, this sandbox is created using a
+virtual machine.

 ## Interface to Kata Containers: CRI, v2-shim, OCI

 A typical Kata Containers deployment uses Kubernetes with a CRI implementation.
-On every node, Kubelet will interact with a CRI implementor, which will in turn interface with
-an OCI based runtime, such as Kata Containers. Typical CRI implementors are `cri-o` and `containerd`.
+On every node, Kubelet will interact with a CRI implementor, which will in turn
+interface with an OCI based runtime, such as Kata Containers. Typical CRI
+implementors are `cri-o` and `containerd`.

-The CRI API, as defined at the Kubernetes [CRI-API repo](https://github.com/kubernetes/cri-api/),
-results in a few constructs being supported by the CRI implementation, and ultimately in the OCI
-runtime creating the workloads.
+The CRI API, as defined at the Kubernetes [CRI-API
+repo](https://github.com/kubernetes/cri-api/), results in a few constructs being
+supported by the CRI implementation, and ultimately in the OCI runtime creating
+the workloads.

-In order to run a container inside of the Kata sandbox, several virtual machine devices and interfaces
-are required. Kata translates sandbox and container definitions to underlying virtualization technologies provided
-by a set of virtual machine monitors (VMMs) and hypervisors. These devices and their underlying
-implementations are discussed in detail in the following section.
+In order to run a container inside of the Kata sandbox, several virtual machine
+devices and interfaces are required. Kata translates sandbox and container
+definitions to underlying virtualization technologies provided by a set of
+virtual machine monitors (VMMs) and hypervisors. These devices and their
+underlying implementations are discussed in detail in the following section.

 ## Interface to the Kata sandbox/virtual machine

 In case of Kata, today the devices which we need in the guest are:
- - Storage: In the current design of Kata Containers, we are reliant on the CRI implementor to
- assist in image handling and volume management on the host. As a result, we need to support a way of passing to the sandbox the container rootfs, volumes requested
- by the workload, and any other volumes created to facilitate sharing of secrets and `configmaps` with the containers. Depending on how these are managed, a block based device or file-system
- sharing is required. Kata Containers does this by way of `virtio-blk` and/or `virtio-fs`.
- - Networking: A method for enabling network connectivity with the workload is required. Typically this will be done providing a `TAP` device
- to the VMM, and this will be exposed to the guest as a `virtio-net` device. It is feasible to pass in a NIC device directly, in which case `VFIO` is leveraged
- and the device itself will be exposed to the guest.
- - Control: In order to interact with the guest agent and retrieve `STDIO` from containers, a medium of communication is required.
- This is available via `virtio-vsock`.
- - Devices: `VFIO` is utilized when devices are passed directly to the virtual machine and exposed to the container.
- Dynamic Resource Management: `ACPI` is utilized to allow for dynamic VM resource management (for example: CPU, memory, device hotplug). This is required when containers are resized,
- or more generally when containers are added to a pod. 
+ - Storage: In the current design of Kata Containers, we are reliant on the CRI
+ implementor to assist in image handling and volume management on the host. As a
+ result, we need to support a way of passing to the sandbox the container
+ rootfs, volumes requested by the workload, and any other volumes created to
+ facilitate sharing of secrets and `configmaps` with the containers. Depending
+ on how these are managed, a block based device or file-system sharing is
+ required. Kata Containers does this by way of `virtio-blk` and/or `virtio-fs`.
+ - Networking: A method for enabling network connectivity with the workload is
+ required. Typically this will be done providing a `TAP` device to the VMM, and
+ this will be exposed to the guest as a `virtio-net` device. It is feasible to
+ pass in a NIC device directly, in which case `VFIO` is leveraged and the device
+ itself will be exposed to the guest.
+ - Control: In order to interact with the guest agent and retrieve `STDIO` from
+ containers, a medium of communication is required. This is available via
+ `virtio-vsock`.
+ - Devices: `VFIO` is utilized when devices are passed directly to the virtual
+   machine and exposed to the container.
+- Dynamic Resource Management: `ACPI` is utilized to allow for dynamic VM
+ resource management (for example: CPU, memory, device hotplug). This is
+ required when containers are resized, or more generally when containers are
+ added to a pod. 
 
-How these devices are utilized varies depending on the VMM utilized. We clarify the default settings provided when integrating Kata
-with the QEMU, Firecracker and Cloud Hypervisor VMMs in the following sections.
+How these devices are utilized varies depending on the VMM utilized. We clarify
+the default settings provided when integrating Kata with the QEMU, Dragonball,
+Firecracker and Cloud Hypervisor VMMs in the following sections.
+
+### Virtual Machine Monitor(s)
+
+In a KVM/QEMU (any other VMM utilizing KVM) virtualization setup, all virtual
+machines (VMs) share the same host kernel. This shared environment can lead to
+scenarios where one VM could potentially impact the performance or stability of
+other VMs, including the possibility of a Denial of Service attack.
+
+- Kernel Vulnerabilities: Since all VMs rely on the host's kernel, a
+vulnerability in the kernel could be exploited by a process running within one
+VM to affect the entire system. This could lead to scenarios where the
+compromised VM impacts other VMs or even takes down the host.
+
+- Improper Isolation and Containment: If the virtualization environment is not
+correctly configured, processes in one VM might impact other VMs. This could
+occur through improper isolation of network traffic, shared file systems, or
+other inter-VM communication channels.
+
+- Hypervisor Vulnerabilities: Flaws in the KVM hypervisor or QEMU could be
+exploited to cause information disclosure, data tampering, elevation of
+privileges, denial of service, and others. Since KVM/QEMU leverages the host
+kernel for its operation, any exploit at this level can have widespread impacts.
+
+- Malicious or Flawed Guest Operating Systems: A guest operating system that is
+maliciously designed or has serious flaws could engage in activities that
+disrupt the normal operation of the host or other guests. This might include
+aggressive network activity or interactions with the virtualization stack that
+lead to instability.
+
+- Resource Exhaustion: A VM could consume excessive shared resources such as
+CPU, memory, or I/O bandwidth, leading to resource starvation for other VMs.
+This could be due to misconfiguration, a runaway process, or a deliberate
+denial of service attack from a compromised VM.

 ### Devices

-Each virtio device is implemented by a backend, which may execute within userspace on the host (vhost-user), the VMM itself, or within the host kernel (vhost). While it may provide enhanced performance,
-vhost devices are often seen as higher risk since an exploit would be already running within the kernel space. While VMM and vhost-user are both in userspace on the host, `vhost-user` generally allows for the back-end process to require less system calls and capabilities compared to a full VMM.
+Each virtio device is implemented by a backend, which may execute within
+userspace on the host (vhost-user), the VMM itself, or within the host kernel
+(vhost). While it may provide enhanced performance, vhost devices are often seen
+as higher risk since an exploit would be already running within the kernel
+space. While VMM and vhost-user are both in userspace on the host, `vhost-user`
+generally allows for the back-end process to require less system calls and
+capabilities compared to a full VMM.

 #### `virtio-blk` and `virtio-scsi`

-The backend for `virtio-blk` and `virtio-scsi` are based in the VMM itself (ring3 in the context of x86) by default for Cloud Hypervisor, Firecracker and QEMU.
-While `vhost` based back-ends are available for QEMU, it is not recommended. `vhost-user` back-ends are being added for Cloud Hypervisor, they are not utilized in Kata today.
+The backend for `virtio-blk` and `virtio-scsi` are based in the VMM itself
+(ring3 in the context of x86) by default for Cloud Hypervisor, Firecracker and
+QEMU. While `vhost` based back-ends are available for QEMU, it is not
+recommended. `vhost-user` back-ends are being added for Cloud Hypervisor, they
+are not utilized in Kata today.

 #### `virtio-fs`

-`virtio-fs` is supported in Cloud Hypervisor and QEMU. `virtio-fs`'s interaction with the host filesystem is done through a vhost-user daemon, `virtiofsd`.
-The `virtio-fs` client, running in the guest, will generate requests to access files. `virtiofsd` will receive requests, open the file, and request the VMM
-to `mmap` it into the guest. When DAX is utilized, the guest will access the host's page cache, avoiding the need for copy and duplication. DAX is still an experimental feature,
-and is not enabled by default.
+`virtio-fs` is supported in Cloud Hypervisor and QEMU. `virtio-fs`'s interaction
+with the host filesystem is done through a vhost-user daemon, `virtiofsd`. The
+`virtio-fs` client, running in the guest, will generate requests to access
+files. `virtiofsd` will receive requests, open the file, and request the VMM to
+`mmap` it into the guest. When DAX is utilized, the guest will access the host's
+page cache, avoiding the need for copy and duplication. DAX is still an
+experimental feature, and is not enabled by default.

 From the `virtiofsd` [documentation](https://gitlab.com/virtio-fs/virtiofsd/-/blob/main/README.md):
 ```This program must be run as the root user. Upon startup the program will switch into a new file system namespace with the shared directory tree as its root. This prevents “file system escapes” due to symlinks and other file system objects that might lead to files outside the shared directory. The program also sandboxes itself using seccomp(2) to prevent ptrace(2) and other vectors that could allow an attacker to compromise the system after gaining control of the virtiofsd process.```

-DAX-less support for `virtio-fs` is available as of the 5.4 Linux kernel. QEMU VMM supports virtio-fs as of v4.2. Cloud Hypervisor
-supports `virtio-fs`.
+DAX-less support for `virtio-fs` is available as of the 5.4 Linux kernel. QEMU
+VMM supports virtio-fs as of v4.2. Cloud Hypervisor supports `virtio-fs`.

 #### `virtio-net`

@@ -97,9 +159,9 @@ supports `virtio-fs`.

 ##### QEMU networking

-While QEMU has options for `vhost`, `virtio-net` and `vhost-user`, the `virtio-net` backend
-for Kata defaults to `vhost-net` for performance reasons. The default configuration is being
-reevaluated.
+While QEMU has options for `vhost`, `virtio-net` and `vhost-user`, the
+`virtio-net` backend for Kata defaults to `vhost-net` for performance reasons.
+The default configuration is being reevaluated.

 ##### Firecracker networking

@@ -107,8 +169,14 @@ For Firecracker, the `virtio-net` backend is within Firecracker's VMM.

 ##### Cloud Hypervisor networking

-For Cloud Hypervisor, the current backend default is within the VMM. `vhost-user-net` support
-is being added (written in rust, Cloud Hypervisor specific).
+For Cloud Hypervisor, the current backend default is within the VMM.
+`vhost-user-net` support is being added (written in rust, Cloud Hypervisor
+specific).
+
+##### Dragonball networking
+
+For Dragonball, the `virtio-net` backend default is within Dragonbasll's VMM.
+

 #### virtio-vsock

@@ -116,22 +184,88 @@ is being added (written in rust, Cloud Hypervisor specific).

 In QEMU, vsock is backed by `vhost_vsock`, which runs within the kernel itself.

-##### Firecracker and Cloud Hypervisor
+##### Dragonball, Firecracker and Cloud Hypervisor

-In Firecracker and Cloud Hypervisor, vsock is backed by a unix-domain-socket in the hosts userspace.
+In Dragonball, Firecracker and Cloud Hypervisor, vsock is backed by a unix-domain-socket in
+the hosts userspace.

 #### VFIO

-Utilizing VFIO, devices can be passed through to the virtual machine. We will assess this separately. Exposure to
-host is limited to gaps in device pass-through handling. This is supported in QEMU and Cloud Hypervisor, but not
-Firecracker.
+Utilizing VFIO, devices can be passed through to the virtual machine. Exposure
+to the host is limited to gaps in device pass-through handling. This is
+supported in QEMU and Cloud Hypervisor, but not Firecracker.
+
+- Device Isolation Failure: One of the primary risks associated with VFIO is the
+failure to isolate the physical device. If a VM can affect the operation of the
+physical device in a way that impacts other VMs or the host system, it could
+lead to security breaches or system instability.
+
+- DMA Attacks: Direct Memory Access (DMA) attacks are a significant concern with
+VFIO. Since the device has direct access to the system's memory, there's a risk
+that a compromised VM could use its assigned device to read or write memory
+outside of its allocated space, potentially accessing sensitive information or
+affecting the host or other VMs.
+
+- Firmware Vulnerabilities: Devices attached via VFIO rely on their firmware,
+which can have vulnerabilities. A compromised device firmware could be exploited
+to gain unauthorized access or to disrupt the system. Resource Starvation:
+Improperly managed, a VM with direct access to hardware resources could
+monopolize those resources, leading to performance degradation or denial of
+service for other VMs or the host system.
+
+- Escalation of Privileges: If a VM with VFIO access is compromised, it could
+potentially be used to gain higher privileges than intended, especially if the
+I/O devices have capabilities that are not adequately controlled or monitored.
+
+- Improper Configuration and Management: Human errors in configuring VFIO, such
+as incorrect group or user permissions, can expose the system to risks.
+Additionally, inadequate monitoring and management of the VMs and their devices
+can lead to security lapses.
+
+- Software Vulnerabilities: Like any software, the components of VFIO (like the
+kernel modules, device drivers, and management tools) can have vulnerabilities
+that might be exploited by an attacker to compromise the security of the system.
+Inter-VM Interference and Side-Channel Attacks: Even with device assignment,
+there could be side-channel attacks where an attacker VM infers sensitive
+information from the physical device's behavior or through shared resources like
+cache.
+
+#### ACPI (Dragonball uses Upcall)
+
+ACPI is necessary for hotplugging of CPU, memory and devices. ACPI is available
+in QEMU and Cloud Hypervisor. Device, CPU and memory hotplug are not available
+in Firecracker.
+
+- Hypervisor Vulnerabilities: In virtualized environments, the hypervisor
+manages ACPI calls for virtual machines (VMs). If the hypervisor has
+vulnerabilities in handling ACPI requests, it could lead to escalated privileges
+or other security breaches.
+
+- VM Escape: A sophisticated attack could exploit ACPI functionality to achieve
+a VM escape, where malicious code in a VM breaks out to the host system or other
+VMs. Firmware Attacks in a Virtualized Context: Similar to physical
+environments, firmware-based attacks (including those targeting ACPI) in
+virtualized systems can be persistent and difficult to detect. In a virtualized
+environment, such attacks might not only compromise the host system but also all
+the VMs running on it.
+
+- Resource Starvation Attacks: ACPI functionality could be exploited to
+manipulate power management features, causing denial of service through
+resource starvation. For example, an attacker could force a VM into a low-power
+state, degrading its performance or availability.
+
+- Compromised VMs Affecting Host ACPI Settings: If a VM is compromised, it might
+be used to alter ACPI settings on the host, affecting all VMs on that host. This
+could lead to various impacts, from performance degradation to system
+instability.
+
+- Supply Chain Risks: As with non-virtualized environments, the firmware,
+including ACPI firmware used in virtualized environments, could be compromised
+during the supply chain process, leading to vulnerabilities that affect all VMs
+running on the hardware.

-#### ACPI

-ACPI is necessary for hotplug of CPU, memory and devices. ACPI is available in QEMU and Cloud Hypervisor. Device, CPU and memory hotplug
-are not available in Firecracker.

 ## Devices and threat model

 ![Threat model](threat-model-boundaries.svg "threat-model")
-
--- a/docs/use-cases/GPU-passthrough-and-Kata.md
+++ b/docs/use-cases/GPU-passthrough-and-Kata.md
@@ -2,5 +2,5 @@

 Kata Containers supports passing certain GPUs from the host into the container. Select the GPU vendor for detailed information:

- [Intel](Intel-GPU-passthrough-and-Kata.md)
+- [Intel Discrete GPUs](Intel-Discrete-GPU-passthrough-and-Kata.md)/[Intel Integrated GPUs](Intel-GPU-passthrough-and-Kata.md)
 - [NVIDIA](NVIDIA-GPU-passthrough-and-Kata.md)
--- a/docs/use-cases/Intel-Discrete-GPU-passthrough-and-Kata.md
+++ b/docs/use-cases/Intel-Discrete-GPU-passthrough-and-Kata.md
@@ -0,0 +1,274 @@
+# Using Intel Discrete GPU device with Kata Containers
+
+This guide covers the use case for passing Intel Discrete GPUs to Kata.
+These include the Intel® Data Center GPU Max Series and Intel® Data Center GPU Flex Series.
+For integrated GPUs please refer to [Integrate-Intel-GPUs-with-Kata](Intel-GPU-passthrough-and-Kata.md)
+
+> **Note:** These instructions are for a system that has an x86_64 CPU.
+
+An Intel Discrete GPU can be passed to a Kata Container using GPU passthrough, 
+or SR-IOV passthrough.
+
+In Intel GPU pass-through mode, an entire physical GPU is directly assigned to one VM. 
+In this mode of operation, the GPU is accessed exclusively by the Intel driver running in
+the VM to which it is assigned. The GPU is not shared among VMs.
+
+With SR-IOV mode, it is possible to pass a Virtual GPU instance to a virtual machine.
+With this, multiple Virtual GPU instances can be carved out of a single physical GPU 
+and be passed to different VMs, allowing the GPU to be shared.
+
+| Technology | Description |
+|-|-|
+| GPU passthrough | Physical GPU assigned to a single VM |
+| SR-IOV passthrough | Physical GPU shared by multiple VMs |
+
+## Hardware Requirements
+
+Intel GPUs Recommended for Virtualization:
+
+- Intel® Data Center GPU Max Series (`Ponte Vecchio`)
+- Intel® Data Center GPU Flex Series (`Arctic Sound-M`)
+- Intel® Data Center GPU Arc Series 
+
+The following steps outline the workflow for using an Intel Graphics device with Kata Containers.
+
+## Host BIOS requirements
+
+Hardware such as Intel Max and Flex series require larger PCI BARs. 
+
+For large BAR devices, MMIO mapping above the 4GB address space should be enabled in the PCI configuration of the BIOS.
+
+Some hardware vendors use a different name in the BIOS, such as:
+
+- Above 4GB Decoding
+- Memory Hole for PCI MMIO
+- Memory Mapped I/O above 4GB
+
+## Host Kernel Requirements
+
+For device passthrough to work with the Max and Flex Series, an out of tree kernel driver is required.
+
+For Ubuntu 22.04 server, follow these instructions to install the out of tree GPU driver:
+```bash
+$ sudo apt update
+$ sudo apt install -y gpg-agent wget
+$ wget -qO - https://repositories.intel.com/gpu/intel-graphics.key | \
+    sudo gpg --dearmor --output /usr/share/keyrings/intel-graphics.gpg
+$ source /etc/os-release
+$ echo "deb [arch=amd64 signed-by=/usr/share/keyrings/intel-graphics.gpg] https://repositories.intel.com/gpu/ubuntu ${VERSION_CODENAME}/lts/2350 unified" | \
+    sudo tee /etc/apt/sources.list.d/intel-gpu-${VERSION_CODENAME}.list
+$ sudo apt update
+$ sudo apt install -y linux-headers-"$(uname -r)" flex bison intel-fw-gpu intel-i915-dkms xpu-smi
+$ sudo reboot
+```
+For support on other distributions, please refer to [DGPU-docs](https://dgpu-docs.intel.com/driver/installation.html)
+
+You can also install the driver from source which is maintained at [intel-gpu-i915-backports](https://github.com/intel-gpu/intel-gpu-i915-backports)
+Detailed instructions for reference can be found at: https://github.com/intel-gpu/intel-gpu-i915-backports/blob/backport/main/docs/README_ubuntu.md.
+
+Below are the steps for installing the driver from source on an Ubuntu 22.04 LTS system:
+```bash
+$ export I915_BRANCH="backport/main"
+$ git clone -b ${I915_BRANCH} --depth 1 https://github.com/intel-gpu/intel-gpu-i915-backports.git
+$ cd intel-gpu-i915-backports/
+$ sudo apt install -y dkms make debhelper devscripts build-essential flex bison mawk
+$ sudo apt install -y linux-headers-"$(uname -r)" linux-image-unsigned-"$(uname -r)"
+$ make i915dkmsdeb-pkg
+```
+The above make command will create Debian package in parent folder:  `intel-i915-dkms_<release version>.<kernel-version>.deb`
+Install the package as:
+```bash
+$ sudo dpkg -i intel-i915-dkms_<release version>.<kernel-version>.deb
+$ sudo reboot
+```
+
+Additionally, verify that the following kernel configs are enabled for your host kernel:
+```
+CONFIG_VFIO
+CONFIG_VFIO_IOMMU_TYPE1
+CONFIG_VFIO_PCI
+```
+
+## Host kernel command line 
+
+Your host kernel needs to be booted with `intel_iommu=on` and `i915.enable_iaf=0` on the kernel command
+line.
+
+1. Run the following to change the kernel command line using grub:
+```bash
+$ sudo vim /etc/default/grub
+```
+
+2. At the end of the GRUB_CMDLINE_LINUX_DEFAULT append the below line:
+
+`intel_iommu=on iommu=pt i915.max_vfs=63 i915.enable_iaf=0`
+
+3. Update grub as per OS distribution:
+
+For Ubuntu:
+```bash
+$ sudo update-grub
+```
+
+For CentOS/RHEL:
+```bash
+$ sudo grub2-mkconfig -o /boot/grub2/grub.cfg 
+``` 
+
+4. Reboot the system
+```bash
+$ sudo reboot
+```
+
+## Install and configure Kata Containers
+
+To use this feature, you need Kata version 1.3.0 or above.
+Follow the [Kata Containers setup instructions](../install/README.md)
+to install the latest version of Kata.
+
+To use large BARs devices (for example, NVIDIA Tesla P100), you need Kata version 1.11.0 or above.
+
+In order to pass a GPU to a Kata Container, you need to enable the `hotplug_vfio_on_root_bus`
+configuration in the Kata `configuration.toml` file as shown below.
+
+```bash
+$ sudo sed -i -e 's/^# *\(hotplug_vfio_on_root_bus\).*=.*$/\1 = true/g' /usr/share/defaults/kata-containers/configuration.toml
+```
+
+Make sure you are using the `q35` machine type by verifying `machine_type = "q35"` is
+set in the `configuration.toml`. Make sure `pcie_root_port` is set to a positive value.
+
+After making the above changes, configuration in the `configuration.toml` should look like this:
+```
+machine_type = "q35"
+
+hotplug_vfio_on_root_bus = true
+pcie_root_port = 1
+```
+
+## GPU passthrough with Kata Containers
+
+Use the following steps to pass an Intel discrete GPU  with Kata:
+
+1. Find the Bus-Device-Function (BDF) for GPU device:
+
+   ```
+   $ sudo lspci -nn -D | grep Display
+   ```
+
+   Run the previous command to determine the BDF for the GPU device on host.<br/>
+   From the previous output, PCI address `0000:29:00.0` is assigned to the hardware GPU device.<br/>
+   We choose this BDF to use it later to unbind the GPU device from the host for the purpose of demonstration.<br/>
+
+2. Find the IOMMU group for the GPU device:
+
+   ```bash
+   $ BDF="0000:29:00.0"
+   $ readlink -e /sys/bus/pci/devices/$BDF/iommu_group
+   /sys/kernel/iommu_groups/27
+   ```
+
+   The previous output shows that the GPU belongs to IOMMU group 27.
+
+3. Bind the GPU to the `vfio-pci` device driver:
+
+   ```bash
+   $ BDF="0000:29:00.0"
+   $ DEV="/sys/bus/pci/devices/$BDF"
+   $ echo "vfio-pci" | sudo tee "$DEV"/driver_override
+   $ echo $BDF | sudo tee "$DEV"/driver/unbind
+   $ echo "$BDF" | sudo tee "/sys/bus/pci/drivers_probe"
+   ```
+
+   After you run the previous commands, the GPU is  bound to `vfio-pci` driver.<br/>
+   A new directory with the IOMMU group number is created under `/dev/vfio`:
+
+   ```bash
+   $ ls -l /dev/vfio
+     total 0
+     crw------- 1   root root  241,   0 May 18 15:38 27
+     crw-rw-rw- 1 root root  10, 196 May 18 15:37 vfio
+   ```
+
+   Later, to return the device to the standard driver, we simply clear the
+   `driver_override` and re-probe the device, ex:
+
+   ```bash
+   $ echo | sudo tee "$DEV/preferred_driver"
+   $ echo $BDF | sudo tee $DEV/driver/unbind
+   $ echo $BDF | sudo tee /sys/bus/pci/drivers_probe
+   ```
+
+5. Start a Kata container with GPU device:
+
+   ```bash
+   $ sudo ctr --debug run --runtime "io.containerd.kata.v2"  --device "/dev/vfio/27"  --rm -t  "docker.io/library/archlinux:latest" arch uname -r
+
+   ```
+
+   Run `lspci` within the container to verify the GPU device is seen in the list of
+   the PCI devices. Note the vendor-device id of the GPU ("8086:0bd5") in the `lspci` output.
+
+## SR-IOV mode for Intel Discrete GPUs
+
+Use the following steps to pass an Intel Graphics device in SR-IOV mode to a Kata Container:
+
+1. Find the BDF for GPU device:
+
+   ```sh
+   $ sudo lspci -nn -D | grep Display
+     0000:29:00.0 Display controller [0380]: Intel Corporation Ponte Vecchio 1T [8086:0bd5] (rev 2f)
+     0000:3a:00.0 Display controller [0380]: Intel Corporation Ponte Vecchio 1T [8086:0bd5] (rev 2f)
+     0000:9a:00.0 Display controller [0380]: Intel Corporation Ponte Vecchio 1T [8086:0bd5] (rev 2f)
+     0000:ca:00.0 Display controller [0380]: Intel Corporation Ponte Vecchio 1T [8086:0bd5] (rev 2f)
+   ```
+
+   Run the previous command to find out the BDF for the GPU device on host.
+   We choose the GPU with PCI address "0000:3a:00.0" to assign a GPU SR-IOV interface.
+
+2. Carve out SR-IOV slice for the GPU:
+
+   List our total possible SR-IOV virtual interfaces for the GPU:
+
+   ```bash
+   $ BDF="0000:3a:00.0"
+   $ cat  "/sys/bus/pci/devices/$BDF/sriov_totalvfs"
+   63
+   ``` 
+
+   Create SR-IOV interfaces for the GPU:
+   ```sh
+   $ echo 4 | sudo tee /sys/bus/pci/devices/$BDF/sriov_numvfs
+     4
+   $ sudo lspci | grep Display
+     29:00.0 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     3a:00.0 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     3a:00.1 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     3a:00.2 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     3a:00.3 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     3a:00.4 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     9a:00.0 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+     ca:00.0 Display controller: Intel Corporation Ponte Vecchio 1T (rev 2f)
+   ```
+   The above output shows the SR-IOV interfaces created for the GPU.
+
+3. Find the IOMMU group for the GPU SR-IOV interface(VGPU):
+
+   ```bash
+   $ BDF="0000:3a:00:1"
+   $ readlink -e "/sys/bus/pci/devices/$BDF/iommu_group"
+     /sys/kernel/iommu_groups/437
+   $ ls -l /dev/vfio
+     total 0
+     crw-------   1 root root  241,   0 May 18 11:30 437
+     crw-rw-rw- 1 root root  10, 196 May 18 11:29 vfio
+   ```
+
+   Now you can use the device node `/dev/vfio/437` in docker command line to pass
+   the VGPU to a Kata Container.
+
+4. Start a Kata Containers container with GPU device enabled:
+
+   ```bash
+   $ sudo ctr --debug run --runtime "io.containerd.kata.v2"  --device /dev/vfio/437  --rm -t  "docker.io/library/archlinux:latest" arch uname -r
+   ```
--- a/docs/use-cases/NVIDIA-GPU-passthrough-and-Kata.md
+++ b/docs/use-cases/NVIDIA-GPU-passthrough-and-Kata.md
@@ -154,6 +154,29 @@ $ ./build-kernel.sh -v 5.15.23 -g nvidia build
 $ sudo -E ./build-kernel.sh -v 5.15.23 -g nvidia install
 ```

+However, there are special cases like `Dragonball VMM`. It directly supports device `hot-plug/hot-unplug`
+via upcall to avoid `ACPI` virtualization and minimize `VM` overhead. Since upcall isn't upstream kernel
+code, using `Dragonball VMM` for NVIDIA GPU `hot-plug/hot-unplug` requires applying the Upcall patchset in
+addition to the above kernel configuration items. Follow these steps to build for NVIDIA GPU `hot-[un]plug`
+for `Dragonball`:
+
+```sh 
+# Prepare .config to support both upcall and nvidia gpu 
+$ ./build-kernel.sh -v 5.10.25 -e -t dragonball -g nvidia -f setup
+
+# Build guest kernel to support both upcall and nvidia gpu 
+$ ./build-kernel.sh -v 5.10.25 -e -t dragonball -g nvidia build
+
+# Install guest kernel to support both upcall and nvidia gpu
+$ sudo -E ./build-kernel.sh -v 5.10.25 -e -t dragonball -g nvidia install
+```
+
+> **Note**:
+> - `-v 5.10.25` is for the guest kernel version.
+> - `-e` here means experimental, mainly because `upcall` patches are not in upstream Linux kernel.
+> - `-t dragonball` is for specifying hypervisor type.
+> - `-f` is for generating `.config` file.
+
 To build NVIDIA Driver in Kata container, `linux-headers` are required.
 This is a way to generate deb packages for `linux-headers`:

--- a/src/agent/Cargo.lock
+++ b/src/agent/Cargo.lock
@@ -817,6 +817,26 @@ version = "0.9.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c2459377285ad874054d797f3ccebf984978aa39129f6eafde5cdc8315b612f8"

+[[package]]
+name = "const_format"
+version = "0.2.32"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e3a214c7af3d04997541b18d432afaff4c455e79e2029079647e72fc2bd27673"
+dependencies = [
+ "const_format_proc_macros",
+]
+
+[[package]]
+name = "const_format_proc_macros"
+version = "0.2.32"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c7f6ff08fd20f4f299298a28e2dfa8a8ba1036e6cd2460ac1de7b425d76f2500"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "unicode-xid",
+]
+
 [[package]]
 name = "core-foundation"
 version = "0.9.3"
@@ -1858,8 +1878,8 @@ dependencies = [
 "serde_json",
 "sha2",
 "sigstore",
- "strum",
- "strum_macros",
+ "strum 0.25.0",
+ "strum_macros 0.25.3",
 "tar",
 "tokio",
 "tokio-util 0.7.10",
@@ -1977,6 +1997,15 @@ dependencies = [
 "either",
 ]

+[[package]]
+name = "itertools"
+version = "0.12.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ba291022dbbd398a455acf126c1e341954079855bc60dfdda641363bd6922569"
+dependencies = [
+ "either",
+]
+
 [[package]]
 name = "itoa"
 version = "1.0.10"
@@ -2081,8 +2110,8 @@ dependencies = [
 "cfg-if 1.0.0",
 "cgroups-rs",
 "clap",
+ "const_format",
 "futures",
- "http",
 "image-rs",
 "ipnetwork",
 "kata-sys-util",
@@ -2103,7 +2132,7 @@ dependencies = [
 "protobuf 3.2.0",
 "protocols",
 "regex",
- "reqwest",
+ "regorus",
 "rstest",
 "rtnetlink",
 "rustjail",
@@ -2117,6 +2146,8 @@ dependencies = [
 "slog-scope",
 "slog-stdlog",
 "slog-term",
+ "strum 0.26.2",
+ "strum_macros 0.26.2",
 "tempfile",
 "test-utils",
 "thiserror",
@@ -2282,9 +2313,9 @@ dependencies = [

 [[package]]
 name = "libc"
-version = "0.2.151"
+version = "0.2.153"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "302d7ab3130588088d277783b1e2d2e10c9e9e4a16dd9050e6ec93fb3e7048f4"
+checksum = "9c198f91728a82281a64e1f4f9eeb25d82cb32a5de251c6bd1b5154d63a8e7bd"

 [[package]]
 name = "libloading"
@@ -2293,7 +2324,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0c2a198fb6b0eada2a8df47933734e6d35d350665a33a3593d7164fa52c75c19"
 dependencies = [
 "cfg-if 1.0.0",
- "windows-targets 0.48.0",
+ "windows-targets 0.52.4",
 ]

 [[package]]
@@ -2420,9 +2451,9 @@ checksum = "0e7465ac9959cc2b1404e8e2367b43684a6d13790fe23056cc8c6c5a6b7bcb94"

 [[package]]
 name = "memchr"
-version = "2.5.0"
+version = "2.7.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2dffe52ecf27772e601905b7522cb4ef790d2cc203488bbd0e2fe85fcb74566d"
+checksum = "6c8640c5d730cb13ebd907d8d04b52f55ac9a2eec55b440c8892f40d56c76c1d"

 [[package]]
 name = "memoffset"
@@ -2652,6 +2683,31 @@ dependencies = [
 "winapi",
 ]

+[[package]]
+name = "num"
+version = "0.4.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "3135b08af27d103b0a51f2ae0f8632117b7b185ccf931445affa8df530576a41"
+dependencies = [
+ "num-bigint",
+ "num-complex",
+ "num-integer",
+ "num-iter",
+ "num-rational",
+ "num-traits",
+]
+
+[[package]]
+name = "num-bigint"
+version = "0.4.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "608e7659b5c3d7cba262d894801b9ec9d00de989e8a82bd4bef91d08da45cdc0"
+dependencies = [
+ "autocfg",
+ "num-integer",
+ "num-traits",
+]
+
 [[package]]
 name = "num-bigint-dig"
 version = "0.8.4"
@@ -2670,12 +2726,20 @@ dependencies = [
 ]

 [[package]]
-name = "num-integer"
-version = "0.1.45"
+name = "num-complex"
+version = "0.4.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "225d3389fb3509a24c93f5c29eb6bde2586b98d9f016636dff58d7c6f7569cd9"
+checksum = "23c6602fda94a57c990fe0df199a035d83576b496aa29f4e634a8ac6004e68a6"
+dependencies = [
+ "num-traits",
+]
+
+[[package]]
+name = "num-integer"
+version = "0.1.46"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7969661fd2958a5cb096e56c8e1ad0444ac2bbcd0061bd28660485a44879858f"
 dependencies = [
- "autocfg",
 "num-traits",
 ]

@@ -2691,10 +2755,22 @@ dependencies = [
 ]

 [[package]]
-name = "num-traits"
-version = "0.2.15"
+name = "num-rational"
+version = "0.4.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "578ede34cf02f8924ab9447f50c28075b4d3e5b269972345e7e0372b38c6cdcd"
+checksum = "0638a1c9d0a3c0914158145bc76cff373a75a627e6ecbfb71cbe6f453a5a19b0"
+dependencies = [
+ "autocfg",
+ "num-bigint",
+ "num-integer",
+ "num-traits",
+]
+
+[[package]]
+name = "num-traits"
+version = "0.2.18"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "da0df0e5185db44f69b44f26786fe401b6c293d1907744beaa7fa62b2e5a517a"
 dependencies = [
 "autocfg",
 "libm",
@@ -2805,9 +2881,9 @@ dependencies = [

 [[package]]
 name = "once_cell"
-version = "1.15.0"
+version = "1.19.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e82dad04139b71a90c080c8463fe0dc7902db5192d939bd0950f074d014339e1"
+checksum = "3fdb12b2476b595f9358c5161aa467c2438859caa136dec86c26fdd2efe17b92"

 [[package]]
 name = "opaque-debug"
@@ -3325,7 +3401,7 @@ checksum = "355f634b43cdd80724ee7848f95770e7e70eefa6dcf14fea676216573b8fd603"
 dependencies = [
 "bytes 1.5.0",
 "heck 0.3.3",
- "itertools",
+ "itertools 0.10.3",
 "log",
 "multimap",
 "petgraph 0.5.1",
@@ -3343,7 +3419,7 @@ checksum = "119533552c9a7ffacc21e099c24a0ac8bb19c2a2a3f363de84cd9b844feab270"
 dependencies = [
 "bytes 1.5.0",
 "heck 0.4.1",
- "itertools",
+ "itertools 0.10.3",
 "lazy_static",
 "log",
 "multimap",
@@ -3364,7 +3440,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "600d2f334aa05acb02a755e217ef1ab6dea4d51b58b7846588b747edec04efba"
 dependencies = [
 "anyhow",
- "itertools",
+ "itertools 0.10.3",
 "proc-macro2",
 "quote",
 "syn 1.0.109",
@@ -3377,7 +3453,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e5d2d8d10f3c6ded6da8b05b5fb3b8a5082514344d56c9f871412d29b4e075b4"
 dependencies = [
 "anyhow",
- "itertools",
+ "itertools 0.10.3",
 "proc-macro2",
 "quote",
 "syn 1.0.109",
@@ -3603,14 +3679,14 @@ dependencies = [

 [[package]]
 name = "regex"
-version = "1.9.4"
+version = "1.10.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "12de2eff854e5fa4b1295edd650e227e9d8fb0c9e90b12e7f36d6a6811791a29"
+checksum = "c117dbdfde9c8308975b6a18d71f3f385c89461f7b3fb054288ecf2a2058ba4c"
 dependencies = [
 "aho-corasick",
 "memchr",
- "regex-automata 0.3.7",
- "regex-syntax 0.7.5",
+ "regex-automata 0.4.6",
+ "regex-syntax 0.8.3",
 ]

 [[package]]
@@ -3624,13 +3700,13 @@ dependencies = [

 [[package]]
 name = "regex-automata"
-version = "0.3.7"
+version = "0.4.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "49530408a136e16e5b486e883fbb6ba058e8e4e8ae6621a77b048b314336e629"
+checksum = "86b83b8b9847f9bf95ef68afb0b8e6cdb80f498442f5179a29fad448fcc1eaea"
 dependencies = [
 "aho-corasick",
 "memchr",
- "regex-syntax 0.7.5",
+ "regex-syntax 0.8.3",
 ]

 [[package]]
@@ -3641,9 +3717,26 @@ checksum = "49b3de9ec5dc0a3417da371aab17d729997c15010e7fd24ff707773a33bddb64"

 [[package]]
 name = "regex-syntax"
-version = "0.7.5"
+version = "0.8.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dbb5fb1acd8a1a18b3dd5be62d25485eb770e05afb408a9627d14d451bae12da"
+checksum = "adad44e29e4c806119491a7f06f03de4d1af22c3a680dd47f1e6e179439d1f56"
+
+[[package]]
+name = "regorus"
+version = "0.1.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ac45cc36ed8e6188529f44deff00c078d9cd0e6cdc831c4dde96c9d6eeb3a46c"
+dependencies = [
+ "anyhow",
+ "itertools 0.12.1",
+ "lazy_static",
+ "num",
+ "rand",
+ "regex",
+ "scientific",
+ "serde",
+ "serde_json",
+]

 [[package]]
 name = "relative-path"
@@ -4090,6 +4183,26 @@ dependencies = [
 "uriparse",
 ]

+[[package]]
+name = "scientific"
+version = "0.5.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "dc53198b8e237c451c68dba8411a1f8bd92787657689f24d67ae3d6b98c39f59"
+dependencies = [
+ "scientific-macro",
+]
+
+[[package]]
+name = "scientific-macro"
+version = "0.5.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d2ee4885492bb655bfa05d039cd9163eb8fe9f79ddebf00ca23a1637510c2fd2"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "syn 2.0.52",
+]
+
 [[package]]
 name = "scopeguard"
 version = "1.1.0"
@@ -4169,9 +4282,9 @@ checksum = "92d43fe69e652f3df9bdc2b85b2854a0825b86e4fb76bc44d945137d053639ca"

 [[package]]
 name = "serde"
-version = "1.0.164"
+version = "1.0.198"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9e8c8cf938e98f769bc164923b06dce91cea1751522f46f8466461af04c9027d"
+checksum = "9846a40c979031340571da2545a4e5b7c4163bdae79b301d5f86d03979451fcc"
 dependencies = [
 "serde_derive",
 ]
@@ -4208,9 +4321,9 @@ checksum = "794e44574226fc701e3be5c651feb7939038fc67fb73f6f4dd5c4ba90fd3be70"

 [[package]]
 name = "serde_derive"
-version = "1.0.164"
+version = "1.0.198"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d9735b638ccc51c28bf6914d90a2e9725b377144fc612c49a611fddd1b631d68"
+checksum = "e88edab869b01783ba905e7d0153f9fc1a6505a96e4ad3018011eedb838566d9"
 dependencies = [
 "proc-macro2",
 "quote",
@@ -4219,9 +4332,9 @@ dependencies = [

 [[package]]
 name = "serde_json"
-version = "1.0.81"
+version = "1.0.116"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b7ce2b32a1aed03c558dc61a5cd328f15aff2dbc17daad8fb8af04d2100e15c"
+checksum = "3e17db7126d17feb94eb3fad46bf1a96b034e8aacbc2e775fe81505f8b0b2813"
 dependencies = [
 "itoa",
 "ryu",
@@ -4578,9 +4691,15 @@ version = "0.25.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "290d54ea6f91c969195bdbcd7442c8c2a2ba87da8bf60a7ee86a235d4bc1e125"
 dependencies = [
- "strum_macros",
+ "strum_macros 0.25.3",
 ]

+[[package]]
+name = "strum"
+version = "0.26.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "5d8cec3501a5194c432b2b7976db6b7d10ec95c253208b45f83f7136aa985e29"
+
 [[package]]
 name = "strum_macros"
 version = "0.25.3"
@@ -4594,6 +4713,19 @@ dependencies = [
 "syn 2.0.52",
 ]

+[[package]]
+name = "strum_macros"
+version = "0.26.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c6cf59daf282c0a494ba14fd21610a0325f9f90ec9d1231dea26bcb1d696c946"
+dependencies = [
+ "heck 0.4.1",
+ "proc-macro2",
+ "quote",
+ "rustversion",
+ "syn 2.0.52",
+]
+
 [[package]]
 name = "subprocess"
 version = "0.2.9"
@@ -4640,9 +4772,9 @@ checksum = "2047c6ded9c721764247e62cd3b03c09ffc529b2ba5b10ec482ae507a4a70160"

 [[package]]
 name = "sysinfo"
-version = "0.29.11"
+version = "0.30.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cd727fc423c2060f6c92d9534cef765c65a6ed3f428a03d7def74a8c4348e666"
+checksum = "0c385888ef380a852a16209afc8cfad22795dd8873d69c9a14d2e2088f118d18"
 dependencies = [
 "cfg-if 1.0.0",
 "core-foundation-sys",
@@ -4650,7 +4782,7 @@ dependencies = [
 "ntapi",
 "once_cell",
 "rayon",
- "winapi",
+ "windows",
 ]

 [[package]]
@@ -5210,6 +5342,12 @@ version = "1.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "7e8820f5d777f6224dc4be3632222971ac30164d4a258d595640799554ebfd99"

+[[package]]
+name = "unicode-xid"
+version = "0.2.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f962df74c8c05a667b5ee8bcf162993134c104e96440b663c8daa176dc772d8c"
+
 [[package]]
 name = "universal-hash"
 version = "0.5.1"
@@ -5537,6 +5675,25 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "712e227841d057c1ee1cd2fb22fa7e5a5461ae8e48fa2ca79ec42cfc1931183f"

+[[package]]
+name = "windows"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e48a53791691ab099e5e2ad123536d0fff50652600abaf43bbf952894110d0be"
+dependencies = [
+ "windows-core",
+ "windows-targets 0.52.4",
+]
+
+[[package]]
+name = "windows-core"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "33ab640c8d7e35bf8ba19b884ba838ceb4fba93a4e8c65a9059d08afcfc683d9"
+dependencies = [
+ "windows-targets 0.52.4",
+]
+
 [[package]]
 name = "windows-sys"
 version = "0.36.1"
--- a/src/agent/Cargo.toml
+++ b/src/agent/Cargo.toml
@@ -19,13 +19,14 @@ serde_json = "1.0.39"
 scan_fmt = "0.2.3"
 scopeguard = "1.0.0"
 thiserror = "1.0.26"
-regex = "1.5.6"
+regex = "1.10.4"
 serial_test = "0.5.1"
 oci-distribution = "0.10.0"
 url = "2.5.0"
 kata-sys-util = { path = "../libs/kata-sys-util" }
 kata-types = { path = "../libs/kata-types" }
 safe-path = { path = "../libs/safe-path" }
+const_format = "0.2.30"

 # Async helpers
 async-trait = "0.1.42"
@@ -36,7 +37,7 @@ futures = "0.3.30"
 tokio = { version = "1.28.1", features = ["full"] }
 tokio-vsock = "0.3.1"

-netlink-sys = { version = "0.7.0", features = ["tokio_socket",]}
+netlink-sys = { version = "0.7.0", features = ["tokio_socket"] }
 rtnetlink = "0.8.0"
 netlink-packet-utils = "0.4.1"
 ipnetwork = "0.17.0"
@@ -55,29 +56,36 @@ log = "0.4.11"
 cfg-if = "1.0.0"
 prometheus = { version = "0.13.0", features = ["process"] }
 procfs = "0.12.0"
-anyhow = "1.0.32"
+
+# anyhow is currently locked at 1.0.58 because:
+# - Versions between 1.0.59 - 1.0.76 have not been tested yet using Kata CI.
+#   However, those versions are passing "make test" for the Kata Agent.
+# - Versions 1.0.77 or newer fail during "make test" - see
+#   https://github.com/kata-containers/kata-containers/issues/9538
+anyhow = "=1.0.58"
+
 cgroups = { package = "cgroups-rs", version = "0.3.3" }

 # Tracing
 tracing = "0.1.26"
 tracing-subscriber = "0.2.18"
 tracing-opentelemetry = "0.13.0"
-opentelemetry = { version = "0.14.0", features = ["rt-tokio-current-thread"]}
+opentelemetry = { version = "0.14.0", features = ["rt-tokio-current-thread"] }
 vsock-exporter = { path = "vsock-exporter" }

 # Configuration
 serde = { version = "1.0.129", features = ["derive"] }
 toml = "0.5.8"
 clap = { version = "3.0.1", features = ["derive"] }
-
-# Communication with the OPA service
-http = { version = "0.2.8", optional = true }
-reqwest = { version = "0.11.14", optional = true }
-# The "vendored" feature for openssl is required for musl build
-openssl = { version = "0.10.54", features = ["vendored"], optional = true }
+strum = "0.26.2"
+strum_macros = "0.26.2"

 # Image pull/decrypt
 image-rs = { git = "https://github.com/confidential-containers/guest-components", rev = "ca6b438", default-features = true, optional = true }
+openssl = { version = "0.10.54", features = ["vendored"], optional = true }
+
+# Agent Policy
+regorus = { version = "0.1.4", default-features = false, features = ["arc", "regex"], optional = true }

 [dev-dependencies]
 tempfile = "3.1.0"
@@ -87,19 +95,17 @@ rstest = "0.18.0"
 async-std = { version = "1.12.0", features = ["attributes"] }

 [workspace]
-members = [
-    "rustjail",
-]
+members = ["rustjail"]

 [profile.release]
 lto = true

 [features]
 # The default-pull feature would support all pull types, including sharing images by virtio-fs and pulling images in the guest
-default-pull = [ "guest-pull" ]
+default-pull = ["guest-pull"]
 seccomp = ["rustjail/seccomp"]
 standard-oci-runtime = ["rustjail/standard-oci-runtime"]
-agent-policy = ["http", "openssl", "reqwest"]
+agent-policy = ["regorus"]
 guest-pull = ["image-rs", "openssl"]

 [[bin]]
--- a/src/agent/README.md
+++ b/src/agent/README.md
@@ -116,7 +116,7 @@ For further details, see the

 ## Agent options

-The kata agent has the ability to configure agent options in guest kernel command line at runtime. Currently, the following agent options can be configured: 
+The kata agent has the ability to configure agent options in guest kernel command line at runtime. Currently, the following agent options can be configured:

 | Option | Name | Description  | Type | Default |
 |-|-|:-:|:-:|:-:|
@@ -126,6 +126,8 @@ The kata agent has the ability to configure agent options in guest kernel comman
 | `agent.debug_console_vport` | Debug console port | Allow to specify the `vsock` port to connect the debugging console | integer | `0` |
 | `agent.devmode` | Developer mode | Allow the agent process to coredump | boolean | `false` |
 | `agent.hotplug_timeout` | Hotplug timeout | Allow to configure hotplug timeout(seconds) of block devices | integer | `3` |
+| `agent.guest_components_rest_api` | `api-server-rest` configuration | Select the features that the API Server Rest attestation component will run with. Valid values are `all`, `attestation`, `resource` | string | `resource` |
+| `agent.guest_components_procs` | guest-components processes | Attestation-related processes that should be spawned as children of the guest. Valid values are `none`, `attestation-agent`, `confidential-data-hub` (implies `attestation-agent`), `api-server-rest` (implies `attestation-agent` and `confidential-data-hub`) | string | `api-server-rest` |
 | `agent.https_proxy` | HTTPS proxy | Allow to configure `https_proxy` in the guest | string | `""` |
 | `agent.log` | Log level | Allow the agent log level to be changed (produces more or less output) | string | `"info"` |
 | `agent.log_vport` | Log port | Allow to specify the `vsock` port to read logs | integer | `0` |
@@ -133,10 +135,10 @@ The kata agent has the ability to configure agent options in guest kernel comman
 | `agent.passfd_listener_port` | File descriptor passthrough IO listener port | Allow to set the file descriptor passthrough IO listener port | integer | `0` |
 | `agent.server_addr` | Server address | Allow the ttRPC server address to be specified | string | `"vsock://-1:1024"` |
 | `agent.trace` | Trace mode | Allow to static tracing | boolean | `false` |
-| `agent.unified_cgroup_hierarchy` | `Cgroup hierarchy` | Allow to setup v2 cgroups | boolean | `false` |
+| `systemd.unified_cgroup_hierarchy` | `Cgroup hierarchy` | Allow to setup v2 cgroups | boolean | `false` |

 > **Note:** Accepted values for some agent options
->  - `agent.config_file`: If we enable `agent.config_file` in guest kernel command line, 
+>  - `agent.config_file`: If we enable `agent.config_file` in guest kernel command line,
 >    we will generate the agent config from it.
 >    The agent will fail to start if the configuration file is not present,
 >    or if it can't be parsed properly.
@@ -145,13 +147,13 @@ The kata agent has the ability to configure agent options in guest kernel comman
 >  - `agent.log`:   "critical"("fatal" | "panic") | "error" | "warn"("warning") | "info" | "debug"
 >  - `agent.server_addr`: "{VSOCK_ADDR}:{VSOCK_PORT}"
 >  - `agent.trace`: true | false
->  - `agent.unified_cgroup_hierarchy`: true | false
+>  - `systemd.unified_cgroup_hierarchy`: true | false

-For instance, you can enable the debug console and set the agent log level to debug by configuring the guest kernel command line in the configuration file: 
+For instance, you can enable the debug console and set the agent log level to debug by configuring the guest kernel command line in the configuration file:
 ```toml
-kernel_params = "agent.debug_console agent.log=debug agent.hotplug_timeout=10" 
+kernel_params = "agent.debug_console agent.log=debug agent.hotplug_timeout=10"
 ```
 results in:
 ```bash
 {"msg":"announce","level":"INFO","subsystem":"root","version":"0.1.0","pid":"214","source":"agent","name":"kata-agent","config":"AgentConfig { debug_console: true, dev_mode: false, log_level: Debug, hotplug_timeout: 10s, debug_console_vport: 0, log_vport: 0, container_pipe_size: 0, server_addr: "vsock://-1:1024", passfd_listener_port: 0, unified_cgroup_hierarchy: false, tracing: false, supports_seccomp: true }","agent-version":"3.3.0-alpha0"}
-```
+```
--- a/src/agent/rustjail/src/cgroups/fs/mod.rs
+++ b/src/agent/rustjail/src/cgroups/fs/mod.rs
@@ -1325,6 +1325,7 @@ mod tests {
    use std::collections::HashMap;
    use std::process::Command;
    use std::sync::{Arc, RwLock};
+    use std::time::{SystemTime, UNIX_EPOCH};

    use cgroups::devices::{DevicePermissions, DeviceType};
    use oci::{Linux, LinuxDeviceCgroup, LinuxResources, Spec};
@@ -1438,48 +1439,38 @@ mod tests {
            access: String::from("rwm"),
        };

+        let now = SystemTime::now()
+            .duration_since(UNIX_EPOCH)
+            .unwrap()
+            .as_secs();
+        let one_time_pod_name = format!("kata-agent-fs-manager-test-{}", now);
+        let one_time_cpath =
+            |child: &str| -> String { format!("/{}/{}", one_time_pod_name, child) };
+
        let test_cases = vec![
            TestCase {
-                cpath: vec![String::from(
-                    "/kata-agent-fs-manager-test/449ccd81-9320-4f3e-bb67-78f84700fac9",
-                )],
+                cpath: vec![one_time_cpath("child1")],
                devices: vec![vec![allow_all.clone()]],
                allowed_all: vec![true],
                pod_devices_list: vec![String::from("a *:* rwm\n")],
                container_devices_list: vec![String::from("a *:* rwm\n")],
            },
            TestCase {
-                cpath: vec![String::from(
-                    "/kata-agent-fs-manager-test/449ccd81-9320-4f3e-bb67-78f84700fac9",
-                )],
+                cpath: vec![one_time_cpath("child1")],
                devices: vec![vec![deny_all.clone()]],
                allowed_all: vec![false],
                pod_devices_list: vec![String::new()],
                container_devices_list: vec![String::new()],
            },
            TestCase {
-                cpath: vec![
-                    String::from(
-                        "/kata-agent-fs-manager-test/449ccd81-9320-4f3e-bb67-78f84700fac9",
-                    ),
-                    String::from(
-                        "/kata-agent-fs-manager-test/1c7affca-1f65-427c-ba92-caff1cea61f6",
-                    ),
-                ],
+                cpath: vec![one_time_cpath("child1"), one_time_cpath("child2")],
                devices: vec![vec![deny_all.clone()], vec![allow_all.clone()]],
                allowed_all: vec![false, true],
                pod_devices_list: vec![String::new(), String::from("b *:* rwm\nc *:* rwm\n")],
                container_devices_list: vec![String::new(), String::from("b *:* rwm\nc *:* rwm\n")],
            },
            TestCase {
-                cpath: vec![
-                    String::from(
-                        "/kata-agent-fs-manager-test/449ccd81-9320-4f3e-bb67-78f84700fac9",
-                    ),
-                    String::from(
-                        "/kata-agent-fs-manager-test/1c7affca-1f65-427c-ba92-caff1cea61f6",
-                    ),
-                ],
+                cpath: vec![one_time_cpath("child1"), one_time_cpath("child2")],
                devices: vec![vec![allow_all], vec![deny_all]],
                allowed_all: vec![true, true],
                pod_devices_list: vec![String::from("a *:* rwm\n"), String::from("a *:* rwm\n")],
@@ -1517,13 +1508,16 @@ mod tests {
                assert!(devcg_info.inited);
                assert_eq!(
                    devcg_info.allowed_all, tc.allowed_all[cid],
-                    "Round {}, cid {} allowed all assertion failure",
+                    "Test case {}: cid {} allowed all assertion failure",
                    round, cid
                );
                drop(devcg_info);

                let pod_devices_list = Command::new("cat")
-                    .arg("/sys/fs/cgroup/devices/kata-agent-fs-manager-test/devices.list")
+                    .arg(&format!(
+                        "/sys/fs/cgroup/devices/{}/devices.list",
+                        one_time_pod_name
+                    ))
                    .output()
                    .unwrap();
                let container_devices_list = Command::new("cat")
@@ -1538,8 +1532,16 @@ mod tests {
                let container_devices_list =
                    String::from_utf8(container_devices_list.stdout).unwrap();

-                assert_eq!(&pod_devices_list, &tc.pod_devices_list[cid]);
-                assert_eq!(&container_devices_list, &tc.container_devices_list[cid])
+                assert_eq!(
+                    &pod_devices_list, &tc.pod_devices_list[cid],
+                    "Test case {}: cid {} allowed all assertion failure",
+                    round, cid
+                );
+                assert_eq!(
+                    &container_devices_list, &tc.container_devices_list[cid],
+                    "Test case {}: cid {} allowed all assertion failure",
+                    round, cid
+                )
            }

            // Clean up cgroups
--- a/src/agent/rustjail/src/container.rs
+++ b/src/agent/rustjail/src/container.rs
@@ -65,7 +65,7 @@ use crate::sync::{read_sync, write_count, write_sync, SYNC_DATA, SYNC_FAILED, SY
 use crate::sync_with_async::{read_async, write_async};
 use async_trait::async_trait;
 use rlimit::{setrlimit, Resource, Rlim};
-use tokio::io::{AsyncBufReadExt, AsyncReadExt, AsyncWriteExt};
+use tokio::io::AsyncBufReadExt;
 use tokio::sync::Mutex;

 use kata_sys_util::hooks::HookStates;
@@ -601,6 +601,22 @@ fn do_init_child(cwfd: RawFd) -> Result<()> {
        unistd::close(mount_fd)?;
    }

+    if init {
+        // CreateContainer Hooks:
+        // before pivot_root after prestart, createruntime
+        state.pid = std::process::id() as i32;
+        state.status = oci::ContainerState::Created;
+        if let Some(hooks) = spec.hooks.as_ref() {
+            log_child!(
+                cfd_log,
+                "create_container hooks {:?}",
+                hooks.create_container
+            );
+            let mut create_container_states = HookStates::new();
+            create_container_states.execute_hooks(&hooks.create_container, Some(state.clone()))?;
+        }
+    }
+
    if to_new.contains(CloneFlags::CLONE_NEWNS) {
        // unistd::chroot(rootfs)?;
        if no_pivot {
@@ -1002,38 +1018,12 @@ impl BaseContainer for LinuxContainer {
                // Copy from stdin to term_master
                if let Some(mut stdin_stream) = proc_io.stdin.take() {
                    let mut term_master = unsafe { File::from_raw_fd(pseudo.master) };
-                    let mut close_stdin_rx = proc_io.close_stdin_rx.clone();
-                    let wgw_input = proc_io.wg_input.worker();
                    let logger = logger.clone();
                    let term_closer = term_closer.clone();
                    tokio::spawn(async move {
-                        let mut buf = [0u8; 8192];
-                        loop {
-                            tokio::select! {
-                                // Make sure stdin_stream is drained before exiting
-                                biased;
-                                res = stdin_stream.read(&mut buf) => {
-                                    match res {
-                                        Err(_) | Ok(0) => {
-                                            debug!(logger, "copy from stdin to term_master end: {:?}", res);
-                                            break;
-                                        }
-                                        Ok(n) => {
-                                            if term_master.write_all(&buf[..n]).await.is_err() {
-                                                break;
-                                            }
-                                        }
-                                    }
-                                }
-                                // As the stdin fifo is opened in RW mode in the shim, which will never
-                                // read EOF, we close the stdin fifo here when explicit requested.
-                                _ = close_stdin_rx.changed() => {
-                                    debug!(logger, "copy ends as requested");
-                                    break
-                                }
-                            }
-                        }
-                        wgw_input.done();
+                        let res = tokio::io::copy(&mut stdin_stream, &mut term_master).await;
+                        debug!(logger, "copy from stdin to term_master end: {:?}", res);
+
                        std::mem::forget(term_master); // Avoid auto closing of term_master
                        drop(term_closer);
                    });
@@ -1070,37 +1060,10 @@ impl BaseContainer for LinuxContainer {
                if let Some(mut stdin_stream) = proc_io.stdin.take() {
                    debug!(logger, "copy from stdin to parent_stdin");
                    let mut parent_stdin = unsafe { File::from_raw_fd(p.parent_stdin.unwrap()) };
-                    let mut close_stdin_rx = proc_io.close_stdin_rx.clone();
-                    let wgw_input = proc_io.wg_input.worker();
                    let logger = logger.clone();
                    tokio::spawn(async move {
-                        let mut buf = [0u8; 8192];
-                        loop {
-                            tokio::select! {
-                                // Make sure stdin_stream is drained before exiting
-                                biased;
-                                res = stdin_stream.read(&mut buf) => {
-                                    match res {
-                                        Err(_) | Ok(0) => {
-                                            debug!(logger, "copy from stdin to term_master end: {:?}", res);
-                                            break;
-                                        }
-                                        Ok(n) => {
-                                            if parent_stdin.write_all(&buf[..n]).await.is_err() {
-                                                break;
-                                            }
-                                        }
-                                    }
-                                }
-                                // As the stdin fifo is opened in RW mode in the shim, which will never
-                                // read EOF, we close the stdin fifo here when explicit requested.
-                                _ = close_stdin_rx.changed() => {
-                                    debug!(logger, "copy ends as requested");
-                                    break
-                                }
-                            }
-                        }
-                        wgw_input.done();
+                        let res = tokio::io::copy(&mut stdin_stream, &mut parent_stdin).await;
+                        debug!(logger, "copy from stdin to term_master end: {:?}", res);
                    });
                }

--- a/src/agent/rustjail/src/mount.rs
+++ b/src/agent/rustjail/src/mount.rs
@@ -569,7 +569,7 @@ pub fn parse_mount_table(mountinfo_path: &str) -> Result<Vec<Info>> {
    let reader = BufReader::new(file);
    let mut infos = Vec::new();

-    for (_index, line) in reader.lines().enumerate() {
+    for line in reader.lines() {
        let line = line?;

        //Example mountinfo format:
--- a/src/agent/rustjail/src/process.rs
+++ b/src/agent/rustjail/src/process.rs
@@ -54,11 +54,6 @@ pub struct ProcessIo {
    pub stdin: Option<VsockStream>,
    pub stdout: Option<VsockStream>,
    pub stderr: Option<VsockStream>,
-    // used to close stdin stream
-    pub close_stdin_tx: tokio::sync::watch::Sender<bool>,
-    pub close_stdin_rx: tokio::sync::watch::Receiver<bool>,
-    // wait for stdin copy task to finish
-    pub wg_input: WaitGroup,
    // used to wait for all process outputs to be copied to the vsock streams
    // only used when tty is used.
    pub wg_output: WaitGroup,
@@ -70,15 +65,10 @@ impl ProcessIo {
        stdout: Option<VsockStream>,
        stderr: Option<VsockStream>,
    ) -> Self {
-        let (close_stdin_tx, close_stdin_rx) = tokio::sync::watch::channel(false);
-
        ProcessIo {
            stdin,
            stdout,
            stderr,
-            close_stdin_tx,
-            close_stdin_rx,
-            wg_input: WaitGroup::new(),
            wg_output: WaitGroup::new(),
        }
    }
@@ -210,11 +200,9 @@ impl Process {
    }

    pub async fn close_stdin(&mut self) {
-        if let Some(proc_io) = &mut self.proc_io {
-            // notify io copy task to close stdin stream
-            let _ = proc_io.close_stdin_tx.send(true);
-            // wait for io copy task to finish
-            proc_io.wg_input.wait().await;
+        // stdin will be closed automatically in passfd-io senario
+        if self.proc_io.is_some() {
+            return;
        }

        close_process_stream!(self, term_master, TermMaster);
--- a/src/agent/src/config.rs
+++ b/src/agent/src/config.rs
@@ -3,12 +3,13 @@
 // SPDX-License-Identifier: Apache-2.0
 //
 use crate::rpc;
-use anyhow::{bail, ensure, Context, Result};
+use anyhow::{anyhow, bail, ensure, Context, Result};
 use serde::Deserialize;
 use std::env;
 use std::fs;
 use std::str::FromStr;
 use std::time;
+use strum_macros::{Display, EnumString};
 use tracing::instrument;
 use url::Url;

@@ -24,8 +25,10 @@ const HOTPLUG_TIMOUT_OPTION: &str = "agent.hotplug_timeout";
 const DEBUG_CONSOLE_VPORT_OPTION: &str = "agent.debug_console_vport";
 const LOG_VPORT_OPTION: &str = "agent.log_vport";
 const CONTAINER_PIPE_SIZE_OPTION: &str = "agent.container_pipe_size";
-const UNIFIED_CGROUP_HIERARCHY_OPTION: &str = "agent.unified_cgroup_hierarchy";
+const UNIFIED_CGROUP_HIERARCHY_OPTION: &str = "systemd.unified_cgroup_hierarchy";
 const CONFIG_FILE: &str = "agent.config_file";
+const GUEST_COMPONENTS_REST_API_OPTION: &str = "agent.guest_components_rest_api";
+const GUEST_COMPONENTS_PROCS_OPTION: &str = "agent.guest_components_procs";

 // Configure the proxy settings for HTTPS requests in the guest,
 // to solve the problem of not being able to access the specified image in some cases.
@@ -48,7 +51,6 @@ const ERR_INVALID_GET_VALUE_PARAM: &str = "expected name=value";
 const ERR_INVALID_GET_VALUE_NO_NAME: &str = "name=value parameter missing name";
 const ERR_INVALID_GET_VALUE_NO_VALUE: &str = "name=value parameter missing value";
 const ERR_INVALID_LOG_LEVEL_KEY: &str = "invalid log level key name";
-
 const ERR_INVALID_HOTPLUG_TIMEOUT: &str = "invalid hotplug timeout parameter";
 const ERR_INVALID_HOTPLUG_TIMEOUT_PARAM: &str = "unable to parse hotplug timeout";
 const ERR_INVALID_HOTPLUG_TIMEOUT_KEY: &str = "invalid hotplug timeout key name";
@@ -58,6 +60,34 @@ const ERR_INVALID_CONTAINER_PIPE_SIZE_PARAM: &str = "unable to parse container p
 const ERR_INVALID_CONTAINER_PIPE_SIZE_KEY: &str = "invalid container pipe size key name";
 const ERR_INVALID_CONTAINER_PIPE_NEGATIVE: &str = "container pipe size should not be negative";

+const ERR_INVALID_GUEST_COMPONENTS_REST_API_VALUE: &str = "invalid guest components rest api feature given. Valid values are `all`, `attestation`, `resource`";
+const ERR_INVALID_GUEST_COMPONENTS_PROCS_VALUE: &str = "invalid guest components process param given. Valid values are `attestation-agent`, `confidential-data-hub`, `api-server-rest`, or `none`";
+
+#[derive(Clone, Copy, Debug, Default, Display, Deserialize, EnumString, PartialEq)]
+// Features seem to typically be in kebab-case format, but we only have single words at the moment
+#[strum(serialize_all = "kebab-case")]
+#[serde(rename_all = "kebab-case")]
+pub enum GuestComponentsFeatures {
+    All,
+    Attestation,
+    #[default]
+    Resource,
+}
+
+#[derive(Clone, Copy, Debug, Default, Display, Deserialize, EnumString, PartialEq)]
+/// Attestation-related processes that we want to spawn as children of the agent
+#[strum(serialize_all = "kebab-case")]
+#[serde(rename_all = "kebab-case")]
+pub enum GuestComponentsProcs {
+    None,
+    /// ApiServerRest implies ConfidentialDataHub and AttestationAgent
+    #[default]
+    ApiServerRest,
+    AttestationAgent,
+    /// ConfidentialDataHub implies AttestationAgent
+    ConfidentialDataHub,
+}
+
 #[derive(Debug)]
 pub struct AgentConfig {
    pub debug_console: bool,
@@ -74,6 +104,8 @@ pub struct AgentConfig {
    pub supports_seccomp: bool,
    pub https_proxy: String,
    pub no_proxy: String,
+    pub guest_components_rest_api: GuestComponentsFeatures,
+    pub guest_components_procs: GuestComponentsProcs,
 }

 #[derive(Debug, Deserialize)]
@@ -91,6 +123,8 @@ pub struct AgentConfigBuilder {
    pub tracing: Option<bool>,
    pub https_proxy: Option<String>,
    pub no_proxy: Option<String>,
+    pub guest_components_rest_api: Option<GuestComponentsFeatures>,
+    pub guest_components_procs: Option<GuestComponentsProcs>,
 }

 macro_rules! config_override {
@@ -154,6 +188,8 @@ impl Default for AgentConfig {
            supports_seccomp: rpc::have_seccomp(),
            https_proxy: String::from(""),
            no_proxy: String::from(""),
+            guest_components_rest_api: GuestComponentsFeatures::default(),
+            guest_components_procs: GuestComponentsProcs::default(),
        }
    }
 }
@@ -185,6 +221,12 @@ impl FromStr for AgentConfig {
        config_override!(agent_config_builder, agent_config, tracing);
        config_override!(agent_config_builder, agent_config, https_proxy);
        config_override!(agent_config_builder, agent_config, no_proxy);
+        config_override!(
+            agent_config_builder,
+            agent_config,
+            guest_components_rest_api
+        );
+        config_override!(agent_config_builder, agent_config, guest_components_procs);

        Ok(agent_config)
    }
@@ -198,7 +240,10 @@ impl AgentConfig {
        let config_position = args.iter().position(|a| a == "--config" || a == "-c");
        if let Some(config_position) = config_position {
            if let Some(config_file) = args.get(config_position + 1) {
-                return AgentConfig::from_config_file(config_file).context("AgentConfig from args");
+                let mut config =
+                    AgentConfig::from_config_file(config_file).context("AgentConfig from args")?;
+                config.override_config_from_envs();
+                return Ok(config);
            } else {
                panic!("The config argument wasn't formed properly: {:?}", args);
            }
@@ -286,23 +331,21 @@ impl AgentConfig {
            );
            parse_cmdline_param!(param, HTTPS_PROXY, config.https_proxy, get_url_value);
            parse_cmdline_param!(param, NO_PROXY, config.no_proxy, get_string_value);
+            parse_cmdline_param!(
+                param,
+                GUEST_COMPONENTS_REST_API_OPTION,
+                config.guest_components_rest_api,
+                get_guest_components_features_value
+            );
+            parse_cmdline_param!(
+                param,
+                GUEST_COMPONENTS_PROCS_OPTION,
+                config.guest_components_procs,
+                get_guest_components_procs_value
+            );
        }

-        if let Ok(addr) = env::var(SERVER_ADDR_ENV_VAR) {
-            config.server_addr = addr;
-        }
-
-        if let Ok(addr) = env::var(LOG_LEVEL_ENV_VAR) {
-            if let Ok(level) = logrus_to_slog_level(&addr) {
-                config.log_level = level;
-            }
-        }
-
-        if let Ok(value) = env::var(TRACING_ENV_VAR) {
-            let name_value = format!("{}={}", TRACING_ENV_VAR, value);
-
-            config.tracing = get_bool_value(&name_value)?;
-        }
+        config.override_config_from_envs();

        Ok(config)
    }
@@ -313,6 +356,25 @@ impl AgentConfig {
            .with_context(|| format!("Failed to read config file {}", file))?;
        AgentConfig::from_str(&config)
    }
+
+    #[instrument]
+    fn override_config_from_envs(&mut self) {
+        if let Ok(addr) = env::var(SERVER_ADDR_ENV_VAR) {
+            self.server_addr = addr;
+        }
+
+        if let Ok(addr) = env::var(LOG_LEVEL_ENV_VAR) {
+            if let Ok(level) = logrus_to_slog_level(&addr) {
+                self.log_level = level;
+            }
+        }
+
+        if let Ok(value) = env::var(TRACING_ENV_VAR) {
+            let name_value = format!("{}={}", TRACING_ENV_VAR, value);
+
+            self.tracing = get_bool_value(&name_value).unwrap_or(false);
+        }
+    }
 }

 #[instrument]
@@ -439,12 +501,39 @@ fn get_url_value(param: &str) -> Result<String> {
    Ok(Url::parse(&value)?.to_string())
 }

+#[instrument]
+fn get_guest_components_features_value(param: &str) -> Result<GuestComponentsFeatures> {
+    let fields: Vec<&str> = param.split('=').collect();
+    ensure!(fields.len() >= 2, ERR_INVALID_GET_VALUE_PARAM);
+
+    // We need name (but the value can be blank)
+    ensure!(!fields[0].is_empty(), ERR_INVALID_GET_VALUE_NO_NAME);
+
+    let value = fields[1..].join("=");
+    GuestComponentsFeatures::from_str(&value)
+        .map_err(|_| anyhow!(ERR_INVALID_GUEST_COMPONENTS_REST_API_VALUE))
+}
+
+#[instrument]
+fn get_guest_components_procs_value(param: &str) -> Result<GuestComponentsProcs> {
+    let fields: Vec<&str> = param.split('=').collect();
+    ensure!(fields.len() >= 2, ERR_INVALID_GET_VALUE_PARAM);
+
+    // We need name (but the value can be blank)
+    ensure!(!fields[0].is_empty(), ERR_INVALID_GET_VALUE_NO_NAME);
+
+    let value = fields[1..].join("=");
+    GuestComponentsProcs::from_str(&value)
+        .map_err(|_| anyhow!(ERR_INVALID_GUEST_COMPONENTS_PROCS_VALUE))
+}
+
 #[cfg(test)]
 mod tests {
    use test_utils::assert_result;

    use super::*;
    use anyhow::anyhow;
+    use serial_test::serial;
    use std::fs::File;
    use std::io::Write;
    use std::time;
@@ -460,6 +549,8 @@ mod tests {
    }

    #[test]
+    // Run in serial to stop the env set interfering with test_from_cmdline_with_args_overwrites
+    #[serial]
    fn test_from_cmdline() {
        const TEST_SERVER_ADDR: &str = "vsock://-1:1024";

@@ -477,6 +568,8 @@ mod tests {
            tracing: bool,
            https_proxy: &'a str,
            no_proxy: &'a str,
+            guest_components_rest_api: GuestComponentsFeatures,
+            guest_components_procs: GuestComponentsProcs,
        }

        impl Default for TestData<'_> {
@@ -494,6 +587,8 @@ mod tests {
                    tracing: false,
                    https_proxy: "",
                    no_proxy: "",
+                    guest_components_rest_api: GuestComponentsFeatures::default(),
+                    guest_components_procs: GuestComponentsProcs::default(),
                }
            }
        }
@@ -625,28 +720,28 @@ mod tests {
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.hotplug_timeout=100 agent.unified_cgroup_hierarchy=a",
+                contents: "agent.devmode agent.debug_console agent.hotplug_timeout=100 systemd.unified_cgroup_hierarchy=a",
                debug_console: true,
                dev_mode: true,
                hotplug_timeout: time::Duration::from_secs(100),
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.hotplug_timeout=0 agent.unified_cgroup_hierarchy=11",
+                contents: "agent.devmode agent.debug_console agent.hotplug_timeout=0 systemd.unified_cgroup_hierarchy=11",
                debug_console: true,
                dev_mode: true,
                unified_cgroup_hierarchy: true,
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.container_pipe_size=2097152 agent.unified_cgroup_hierarchy=false",
+                contents: "agent.devmode agent.debug_console agent.container_pipe_size=2097152 systemd.unified_cgroup_hierarchy=false",
                debug_console: true,
                dev_mode: true,
                container_pipe_size: 2097152,
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.container_pipe_size=100 agent.unified_cgroup_hierarchy=true",
+                contents: "agent.devmode agent.debug_console agent.container_pipe_size=100 systemd.unified_cgroup_hierarchy=true",
                debug_console: true,
                dev_mode: true,
                container_pipe_size: 100,
@@ -654,13 +749,13 @@ mod tests {
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.container_pipe_size=0 agent.unified_cgroup_hierarchy=0",
+                contents: "agent.devmode agent.debug_console agent.container_pipe_size=0 systemd.unified_cgroup_hierarchy=0",
                debug_console: true,
                dev_mode: true,
                ..Default::default()
            },
            TestData {
-                contents: "agent.devmode agent.debug_console agent.container_pip_siz=100 agent.unified_cgroup_hierarchy=1",
+                contents: "agent.devmode agent.debug_console agent.container_pip_siz=100 systemd.unified_cgroup_hierarchy=1",
                debug_console: true,
                dev_mode: true,
                unified_cgroup_hierarchy: true,
@@ -702,6 +797,13 @@ mod tests {
                server_addr: "unix://@/tmp/foo.socket",
                ..Default::default()
            },
+            // Test that env_var has precedence over the command line (which is the current behaviour)
+            TestData {
+                contents: "agent.server_addr=unix:///tmp/ignored.socket",
+                env_vars: vec!["KATA_AGENT_SERVER_ADDR=unix:///tmp/foo.socket"],
+                server_addr: "unix:///tmp/foo.socket",
+                ..Default::default()
+            },
            TestData {
                contents: "",
                env_vars: vec!["KATA_AGENT_LOG_LEVEL="],
@@ -883,6 +985,41 @@ mod tests {
                no_proxy: "192.168.1.0/24,172.16.0.0/12",
                ..Default::default()
            },
+            TestData {
+               contents: "agent.guest_components_rest_api=attestation",
+               guest_components_rest_api: GuestComponentsFeatures::Attestation,
+                ..Default::default()
+            },
+            TestData {
+                contents: "agent.guest_components_rest_api=resource",
+                guest_components_rest_api: GuestComponentsFeatures::Resource,
+                ..Default::default()
+            },
+            TestData {
+                contents: "agent.guest_components_rest_api=all",
+                guest_components_rest_api: GuestComponentsFeatures::All,
+                ..Default::default()
+            },
+            TestData {
+               contents: "agent.guest_components_procs=api-server-rest",
+               guest_components_procs: GuestComponentsProcs::ApiServerRest,
+                ..Default::default()
+            },
+            TestData {
+                contents: "agent.guest_components_procs=confidential-data-hub",
+                guest_components_procs: GuestComponentsProcs::ConfidentialDataHub,
+                ..Default::default()
+            },
+            TestData {
+                contents: "agent.guest_components_procs=attestation-agent",
+                guest_components_procs: GuestComponentsProcs::AttestationAgent,
+                ..Default::default()
+            },
+            TestData {
+                contents: "agent.guest_components_procs=none",
+                guest_components_procs: GuestComponentsProcs::None,
+                ..Default::default()
+            },
        ];

        let dir = tempdir().expect("failed to create tmpdir");
@@ -932,6 +1069,16 @@ mod tests {
            assert_eq!(d.tracing, config.tracing, "{}", msg);
            assert_eq!(d.https_proxy, config.https_proxy, "{}", msg);
            assert_eq!(d.no_proxy, config.no_proxy, "{}", msg);
+            assert_eq!(
+                d.guest_components_rest_api, config.guest_components_rest_api,
+                "{}",
+                msg
+            );
+            assert_eq!(
+                d.guest_components_procs, config.guest_components_procs,
+                "{}",
+                msg
+            );

            for v in vars_to_unset {
                env::remove_var(v);
@@ -940,15 +1087,17 @@ mod tests {
    }

    #[test]
+    // Run in serial to stop the env set interfering with test_from_cmdline
+    #[serial]
    fn test_from_cmdline_with_args_overwrites() {
        let expected = AgentConfig {
            dev_mode: true,
-            server_addr: "unix://@/tmp/foo.socket".to_string(),
+            server_addr: "unix:///tmp/overwrite.socket".to_string(),
            ..Default::default()
        };

        let example_config_file_contents =
-            "dev_mode = true\nserver_addr = 'unix://@/tmp/foo.socket'";
+            "dev_mode = true\nserver_addr = 'unix:///tmp/ignored.socket'";
        let dir = tempdir().expect("failed to create tmpdir");
        let file_path = dir.path().join("config.toml");
        let filename = file_path.to_str().expect("failed to create filename");
@@ -956,10 +1105,15 @@ mod tests {
        file.write_all(example_config_file_contents.as_bytes())
            .unwrap_or_else(|_| panic!("failed to write file contents"));

+        // Ensure that the env has precedence over agent config file
+        env::set_var("KATA_AGENT_SERVER_ADDR", "unix:///tmp/overwrite.socket");
+
        let config =
            AgentConfig::from_cmdline("", vec!["--config".to_string(), filename.to_string()])
                .expect("Failed to parse command line");

+        env::remove_var("KATA_AGENT_SERVER_ADDR");
+
        assert_eq!(expected.debug_console, config.debug_console);
        assert_eq!(expected.dev_mode, config.dev_mode);
        assert_eq!(
@@ -1403,12 +1557,134 @@ Caused by:
        }
    }

+    #[test]
+    fn test_get_guest_components_features_value() {
+        #[derive(Debug)]
+        struct TestData<'a> {
+            param: &'a str,
+            result: Result<GuestComponentsFeatures>,
+        }
+
+        let tests = &[
+            TestData {
+                param: "",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_PARAM)),
+            },
+            TestData {
+                param: "=",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_NO_NAME)),
+            },
+            TestData {
+                param: "==",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_NO_NAME)),
+            },
+            TestData {
+                param: "x=all",
+                result: Ok(GuestComponentsFeatures::All),
+            },
+            TestData {
+                param: "x=attestation",
+                result: Ok(GuestComponentsFeatures::Attestation),
+            },
+            TestData {
+                param: "x=resource",
+                result: Ok(GuestComponentsFeatures::Resource),
+            },
+            TestData {
+                param: "x===",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_REST_API_VALUE)),
+            },
+            TestData {
+                param: "x==x",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_REST_API_VALUE)),
+            },
+            TestData {
+                param: "x=x",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_REST_API_VALUE)),
+            },
+        ];
+
+        for (i, d) in tests.iter().enumerate() {
+            let msg = format!("test[{}]: {:?}", i, d);
+
+            let result = get_guest_components_features_value(d.param);
+
+            let msg = format!("{}: result: {:?}", msg, result);
+
+            assert_result!(d.result, result, msg);
+        }
+    }
+
+    #[test]
+    fn test_get_guest_components_procs_value() {
+        #[derive(Debug)]
+        struct TestData<'a> {
+            param: &'a str,
+            result: Result<GuestComponentsProcs>,
+        }
+
+        let tests = &[
+            TestData {
+                param: "",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_PARAM)),
+            },
+            TestData {
+                param: "=",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_NO_NAME)),
+            },
+            TestData {
+                param: "==",
+                result: Err(anyhow!(ERR_INVALID_GET_VALUE_NO_NAME)),
+            },
+            TestData {
+                param: "x=attestation-agent",
+                result: Ok(GuestComponentsProcs::AttestationAgent),
+            },
+            TestData {
+                param: "x=confidential-data-hub",
+                result: Ok(GuestComponentsProcs::ConfidentialDataHub),
+            },
+            TestData {
+                param: "x=none",
+                result: Ok(GuestComponentsProcs::None),
+            },
+            TestData {
+                param: "x=api-server-rest",
+                result: Ok(GuestComponentsProcs::ApiServerRest),
+            },
+            TestData {
+                param: "x===",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_PROCS_VALUE)),
+            },
+            TestData {
+                param: "x==x",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_PROCS_VALUE)),
+            },
+            TestData {
+                param: "x=x",
+                result: Err(anyhow!(ERR_INVALID_GUEST_COMPONENTS_PROCS_VALUE)),
+            },
+        ];
+
+        for (i, d) in tests.iter().enumerate() {
+            let msg = format!("test[{}]: {:?}", i, d);
+
+            let result = get_guest_components_procs_value(d.param);
+
+            let msg = format!("{}: result: {:?}", msg, result);
+
+            assert_result!(d.result, result, msg);
+        }
+    }
+
    #[test]
    fn test_config_builder_from_string() {
        let config = AgentConfig::from_str(
            r#"
               dev_mode = true
               server_addr = 'vsock://8:2048'
+               guest_components_procs = "api-server-rest"
+               guest_components_rest_api = "all"
              "#,
        )
        .unwrap();
@@ -1416,6 +1692,14 @@ Caused by:
        // Verify that the override worked
        assert!(config.dev_mode);
        assert_eq!(config.server_addr, "vsock://8:2048");
+        assert_eq!(
+            config.guest_components_procs,
+            GuestComponentsProcs::ApiServerRest
+        );
+        assert_eq!(
+            config.guest_components_rest_api,
+            GuestComponentsFeatures::All
+        );

        // Verify that the default values are valid
        assert_eq!(config.hotplug_timeout, DEFAULT_HOTPLUG_TIMEOUT);
--- a/src/agent/src/device.rs
+++ b/src/agent/src/device.rs
@@ -710,7 +710,14 @@ pub fn update_env_pci(
    env: &mut [String],
    pcimap: &HashMap<pci::Address, pci::Address>,
 ) -> Result<()> {
-    for envvar in env {
+    // SR-IOV device plugin may add two environment variables for one resource:
+    // - PCIDEVICE_<prefix>_<resource-name>: a list of PCI device ids separated by comma
+    // - PCIDEVICE_<prefix>_<resource-name>_INFO: detailed info in JSON for above PCI devices
+    // Both environment variables hold information about the same set of PCI devices.
+    // Below code updates both of them in two passes:
+    // - 1st pass updates PCIDEVICE_<prefix>_<resource-name> and collects host to guest PCI address mapping
+    let mut pci_dev_map: HashMap<String, HashMap<String, String>> = HashMap::new();
+    for envvar in env.iter_mut() {
        let eqpos = envvar
            .find('=')
            .ok_or_else(|| anyhow!("Malformed OCI env entry {:?}", envvar))?;
@@ -718,24 +725,46 @@ pub fn update_env_pci(
        let (name, eqval) = envvar.split_at(eqpos);
        let val = &eqval[1..];

-        if !name.starts_with("PCIDEVICE_") {
+        if !name.starts_with("PCIDEVICE_") || name.ends_with("_INFO") {
            continue;
        }

+        let mut addr_map: HashMap<String, String> = HashMap::new();
        let mut guest_addrs = Vec::<String>::new();
-
-        for host_addr in val.split(',') {
-            let host_addr = pci::Address::from_str(host_addr)
+        for host_addr_str in val.split(',') {
+            let host_addr = pci::Address::from_str(host_addr_str)
                .with_context(|| format!("Can't parse {} environment variable", name))?;
            let guest_addr = pcimap
                .get(&host_addr)
                .ok_or_else(|| anyhow!("Unable to translate host PCI address {}", host_addr))?;
+
            guest_addrs.push(format!("{}", guest_addr));
+            addr_map.insert(host_addr_str.to_string(), format!("{}", guest_addr));
        }

+        pci_dev_map.insert(format!("{}_INFO", name), addr_map);
+
        envvar.replace_range(eqpos + 1.., guest_addrs.join(",").as_str());
    }

+    // - 2nd pass update PCIDEVICE_<prefix>_<resource-name>_INFO if it exists
+    for envvar in env.iter_mut() {
+        let eqpos = envvar
+            .find('=')
+            .ok_or_else(|| anyhow!("Malformed OCI env entry {:?}", envvar))?;
+
+        let (name, _) = envvar.split_at(eqpos);
+        if !(name.starts_with("PCIDEVICE_") && name.ends_with("_INFO")) {
+            continue;
+        }
+
+        if let Some(addr_map) = pci_dev_map.get(name) {
+            for (host_addr, guest_addr) in addr_map {
+                *envvar = envvar.replace(host_addr, guest_addr);
+            }
+        }
+    }
+
    Ok(())
 }

@@ -867,9 +896,10 @@ async fn vfio_pci_device_handler(
            }

            group = Some(devgroup);
-
-            pci_fixups.push((host, guestdev));
        }
+
+        // collect PCI address mapping for both vfio-pci-gk and vfio-pci device
+        pci_fixups.push((host, guestdev));
    }

    let dev_update = if vfio_in_guest {
@@ -932,22 +962,22 @@ pub async fn add_devices(
                ));
            }

-            let mut sb = sandbox.lock().await;
-            for (host, guest) in update.pci {
-                if let Some(other_guest) = sb.pcimap.insert(host, guest) {
-                    return Err(anyhow!(
-                        "Conflicting guest address for host device {} ({} versus {})",
-                        host,
-                        guest,
-                        other_guest
-                    ));
-                }
-            }
-
            // Update cgroup to allow all devices added to guest.
            insert_devices_cgroup_rule(spec, &dev_update.info, true, "rwm")
                .context("Update device cgroup")?;
        }
+
+        let mut sb = sandbox.lock().await;
+        for (host, guest) in update.pci {
+            if let Some(other_guest) = sb.pcimap.insert(host, guest) {
+                return Err(anyhow!(
+                    "Conflicting guest address for host device {} ({} versus {})",
+                    host,
+                    guest,
+                    other_guest
+                ));
+            }
+        }
    }

    if let Some(process) = spec.process.as_mut() {
@@ -1382,8 +1412,11 @@ mod tests {
            ("0000:01:01.0", "ffff:02:1f.7"),
        ];

+        let pci_dev_info_original = r#"PCIDEVICE_x_INFO={"0000:1a:01.0":{"generic":{"deviceID":"0000:1a:01.0"}},"0000:1b:02.0":{"generic":{"deviceID":"0000:1b:02.0"}}}"#;
+        let pci_dev_info_expected = r#"PCIDEVICE_x_INFO={"0000:01:01.0":{"generic":{"deviceID":"0000:01:01.0"}},"0000:01:02.0":{"generic":{"deviceID":"0000:01:02.0"}}}"#;
        let mut env = vec![
            "PCIDEVICE_x=0000:1a:01.0,0000:1b:02.0".to_string(),
+            pci_dev_info_original.to_string(),
            "PCIDEVICE_y=0000:01:01.0".to_string(),
            "NOTAPCIDEVICE_blah=abcd:ef:01.0".to_string(),
        ];
@@ -1399,11 +1432,12 @@ mod tests {
            .collect();

        let res = update_env_pci(&mut env, &pci_fixups);
-        assert!(res.is_ok());
+        assert!(res.is_ok(), "error: {}", res.err().unwrap());

        assert_eq!(env[0], "PCIDEVICE_x=0000:01:01.0,0000:01:02.0");
-        assert_eq!(env[1], "PCIDEVICE_y=ffff:02:1f.7");
-        assert_eq!(env[2], "NOTAPCIDEVICE_blah=abcd:ef:01.0");
+        assert_eq!(env[1], pci_dev_info_expected);
+        assert_eq!(env[2], "PCIDEVICE_y=ffff:02:1f.7");
+        assert_eq!(env[3], "NOTAPCIDEVICE_blah=abcd:ef:01.0");
    }

    #[test]
--- a/src/agent/src/image.rs
+++ b/src/agent/src/image.rs
@@ -33,7 +33,7 @@ const K8S_CONTAINER_TYPE_KEYS: [&str; 2] = [

 #[rustfmt::skip]
 lazy_static! {
-    pub static ref IMAGE_SERVICE: Mutex<Option<ImageService>> = Mutex::new(None);
+    pub static ref IMAGE_SERVICE: Arc<Mutex<Option<ImageService>>> = Arc::new(Mutex::new(None));
 }

 // Convenience function to obtain the scope logger.
@@ -41,33 +41,30 @@ fn sl() -> slog::Logger {
    slog_scope::logger().new(o!("subsystem" => "image"))
 }

-#[derive(Clone)]
+// Function to copy a file if it does not exist at the destination
+fn copy_if_not_exists(src: &Path, dst: &Path) -> Result<()> {
+    if let Some(dst_dir) = dst.parent() {
+        fs::create_dir_all(dst_dir)?;
+    }
+    fs::copy(src, dst)?;
+    Ok(())
+}
+
 pub struct ImageService {
-    image_client: Arc<Mutex<ImageClient>>,
-    images: Arc<Mutex<HashMap<String, String>>>,
+    image_client: ImageClient,
+    images: HashMap<String, String>,
 }

 impl ImageService {
    pub fn new() -> Self {
        Self {
-            image_client: Arc::new(Mutex::new(ImageClient::new(PathBuf::from(
-                KATA_IMAGE_WORK_DIR,
-            )))),
-            images: Arc::new(Mutex::new(HashMap::new())),
+            image_client: ImageClient::new(PathBuf::from(KATA_IMAGE_WORK_DIR)),
+            images: HashMap::new(),
        }
    }

-    /// Get the singleton instance of image service.
-    pub async fn singleton() -> Result<ImageService> {
-        IMAGE_SERVICE
-            .lock()
-            .await
-            .clone()
-            .ok_or_else(|| anyhow!("image service is uninitialized"))
-    }
-
-    async fn add_image(&self, image: String, cid: String) {
-        self.images.lock().await.insert(image, cid);
+    async fn add_image(&mut self, image: String, cid: String) {
+        self.images.insert(image, cid);
    }

    /// pause image is packaged in rootfs
@@ -78,28 +75,47 @@ impl ImageService {
        if !guest_pause_bundle.exists() {
            bail!("Pause image not present in rootfs");
        }
-
+        let guest_pause_config = scoped_join(guest_pause_bundle, CONFIG_JSON)?;
        info!(sl(), "use guest pause image cid {:?}", cid);
-        let pause_bundle = Path::new(CONTAINER_BASE).join(cid).join(target_subpath);
-        let pause_rootfs = pause_bundle.join("rootfs");
+
+        let image_oci = oci::Spec::load(guest_pause_config.to_str().ok_or_else(|| {
+            anyhow!(
+                "Failed to load the guest pause image config from {:?}",
+                guest_pause_config
+            )
+        })?)
+        .context("load image config file")?;
+
+        let image_oci_process = image_oci.process.ok_or_else(|| {
+            anyhow!("The guest pause image config does not contain a process specification. Please check the pause image.")
+        })?;
+        info!(
+            sl(),
+            "pause image oci process {:?}",
+            image_oci_process.clone()
+        );
+
+        // Ensure that the args vector is not empty before accessing its elements.
+        let args = image_oci_process.args;
+        // Check the number of arguments.
+        if args.is_empty() {
+            bail!("The number of args should be greater than or equal to one! Please check the pause image.");
+        }
+
+        let container_bundle = scoped_join(CONTAINER_BASE, cid)?;
+        fs::create_dir_all(&container_bundle)?;
+        let pause_bundle = scoped_join(&container_bundle, target_subpath)?;
+        fs::create_dir_all(&pause_bundle)?;
+        let pause_rootfs = scoped_join(&pause_bundle, "rootfs")?;
        fs::create_dir_all(&pause_rootfs)?;
+        info!(sl(), "pause_rootfs {:?}", pause_rootfs);

-        let copy_if_not_exists = |src: &Path, dst: &Path| -> Result<()> {
-            if !dst.exists() {
-                info!(sl(), "copying file {src:?} to {dst:?}");
-                fs::copy(src, dst)?;
-            }
-            Ok(())
-        };
+        copy_if_not_exists(&guest_pause_config, &pause_bundle.join(CONFIG_JSON))?;
+        let arg_path = Path::new(&args[0]).strip_prefix("/")?;
        copy_if_not_exists(
-            &guest_pause_bundle.join(CONFIG_JSON),
-            &pause_bundle.join(CONFIG_JSON),
+            &guest_pause_bundle.join("rootfs").join(arg_path),
+            &pause_rootfs.join(arg_path),
        )?;
-        copy_if_not_exists(
-            &guest_pause_bundle.join("rootfs/pause"),
-            &pause_rootfs.join("pause"),
-        )?;
-
        Ok(pause_rootfs.display().to_string())
    }

@@ -111,7 +127,7 @@ impl ImageService {
    /// # Returns
    /// - The image rootfs bundle path. (exp. /run/kata-containers/cb0b47276ea66ee9f44cc53afa94d7980b57a52c3f306f68cb034e58d9fbd3c6/images/rootfs)
    pub async fn pull_image(
-        &self,
+        &mut self,
        image: &str,
        cid: &str,
        image_metadata: &HashMap<String, String>,
@@ -145,8 +161,6 @@ impl ImageService {

        let res = self
            .image_client
-            .lock()
-            .await
            .pull_image(image, &bundle_path, &None, &None)
            .await;
        match res {
@@ -170,51 +184,6 @@ impl ImageService {
        Ok(image_bundle_path.as_path().display().to_string())
    }

-    /// When being passed an image name through a container annotation, merge its
-    /// corresponding bundle OCI specification into the passed container creation one.
-    pub async fn merge_bundle_oci(&self, container_oci: &mut oci::Spec) -> Result<()> {
-        if let Some(image_name) = container_oci.annotations.get(ANNO_K8S_IMAGE_NAME) {
-            let images = self.images.lock().await;
-            if let Some(container_id) = images.get(image_name) {
-                let image_oci_config_path = Path::new(CONTAINER_BASE)
-                    .join(container_id)
-                    .join(CONFIG_JSON);
-                debug!(
-                    sl(),
-                    "Image bundle config path: {:?}", image_oci_config_path
-                );
-
-                let image_oci =
-                    oci::Spec::load(image_oci_config_path.to_str().ok_or_else(|| {
-                        anyhow!(
-                            "Invalid container image OCI config path {:?}",
-                            image_oci_config_path
-                        )
-                    })?)
-                    .context("load image bundle")?;
-
-                if let (Some(container_root), Some(image_root)) =
-                    (container_oci.root.as_mut(), image_oci.root.as_ref())
-                {
-                    let root_path = Path::new(CONTAINER_BASE)
-                        .join(container_id)
-                        .join(image_root.path.clone());
-                    container_root.path = String::from(root_path.to_str().ok_or_else(|| {
-                        anyhow!("Invalid container image root path {:?}", root_path)
-                    })?);
-                }
-
-                if let (Some(container_process), Some(image_process)) =
-                    (container_oci.process.as_mut(), image_oci.process.as_ref())
-                {
-                    self.merge_oci_process(container_process, image_process);
-                }
-            }
-        }
-
-        Ok(())
-    }
-
    /// Partially merge an OCI process specification into another one.
    fn merge_oci_process(&self, target: &mut oci::Process, source: &oci::Process) {
        // Override the target args only when the target args is empty and source.args is not empty
@@ -261,12 +230,82 @@ pub async fn set_proxy_env_vars() {
            env::set_var("NO_PROXY", no_proxy);
        }
    }
+
    match env::var("NO_PROXY") {
        Ok(val) => info!(sl(), "no_proxy is set to: {}", val),
        Err(e) => info!(sl(), "no_proxy is not set ({})", e),
    };
 }

+/// When being passed an image name through a container annotation, merge its
+/// corresponding bundle OCI specification into the passed container creation one.
+pub async fn merge_bundle_oci(container_oci: &mut oci::Spec) -> Result<()> {
+    let image_service = IMAGE_SERVICE.clone();
+    let mut image_service = image_service.lock().await;
+    let image_service = image_service
+        .as_mut()
+        .expect("Image Service not initialized");
+    if let Some(image_name) = container_oci.annotations.get(ANNO_K8S_IMAGE_NAME) {
+        if let Some(container_id) = image_service.images.get(image_name) {
+            let image_oci_config_path = Path::new(CONTAINER_BASE)
+                .join(container_id)
+                .join(CONFIG_JSON);
+            debug!(
+                sl(),
+                "Image bundle config path: {:?}", image_oci_config_path
+            );
+
+            let image_oci = oci::Spec::load(image_oci_config_path.to_str().ok_or_else(|| {
+                anyhow!(
+                    "Invalid container image OCI config path {:?}",
+                    image_oci_config_path
+                )
+            })?)
+            .context("load image bundle")?;
+
+            if let (Some(container_root), Some(image_root)) =
+                (container_oci.root.as_mut(), image_oci.root.as_ref())
+            {
+                let root_path = Path::new(CONTAINER_BASE)
+                    .join(container_id)
+                    .join(image_root.path.clone());
+                container_root.path =
+                    String::from(root_path.to_str().ok_or_else(|| {
+                        anyhow!("Invalid container image root path {:?}", root_path)
+                    })?);
+            }
+
+            if let (Some(container_process), Some(image_process)) =
+                (container_oci.process.as_mut(), image_oci.process.as_ref())
+            {
+                image_service.merge_oci_process(container_process, image_process);
+            }
+        }
+    }
+
+    Ok(())
+}
+
+/// Init the image service
+pub async fn init_image_service() {
+    let image_service = ImageService::new();
+    *IMAGE_SERVICE.lock().await = Some(image_service);
+}
+
+pub async fn pull_image(
+    image: &str,
+    cid: &str,
+    image_metadata: &HashMap<String, String>,
+) -> Result<String> {
+    let image_service = IMAGE_SERVICE.clone();
+    let mut image_service = image_service.lock().await;
+    let image_service = image_service
+        .as_mut()
+        .expect("Image Service not initialized");
+
+    image_service.pull_image(image, cid, image_metadata).await
+}
+
 #[cfg(test)]
 mod tests {
    use super::ImageService;
--- a/src/agent/src/main.rs
+++ b/src/agent/src/main.rs
@@ -22,9 +22,11 @@ extern crate slog;
 use anyhow::{anyhow, Context, Result};
 use cfg_if::cfg_if;
 use clap::{AppSettings, Parser};
+use const_format::concatcp;
 use nix::fcntl::OFlag;
+use nix::sys::reboot::{reboot, RebootMode};
 use nix::sys::socket::{self, AddressFamily, SockFlag, SockType, VsockAddr};
-use nix::unistd::{self, dup, Pid};
+use nix::unistd::{self, dup, sync, Pid};
 use std::env;
 use std::ffi::OsStr;
 use std::fs::{self, File};
@@ -32,6 +34,7 @@ use std::os::unix::fs as unixfs;
 use std::os::unix::io::AsRawFd;
 use std::path::Path;
 use std::process::exit;
+use std::process::Command;
 use std::sync::Arc;
 use tracing::{instrument, span};

@@ -56,10 +59,11 @@ mod util;
 mod version;
 mod watcher;

+use config::GuestComponentsProcs;
 use mount::{cgroups_mount, general_mount};
 use sandbox::Sandbox;
 use signal::setup_signal_handler;
-use slog::{error, info, o, warn, Logger};
+use slog::{debug, error, info, o, warn, Logger};
 use uevent::watch_uevents;

 use futures::future::join_all;
@@ -91,6 +95,20 @@ cfg_if! {

 const NAME: &str = "kata-agent";

+const UNIX_SOCKET_PREFIX: &str = "unix://";
+
+const AA_PATH: &str = "/usr/local/bin/attestation-agent";
+const AA_ATTESTATION_SOCKET: &str =
+    "/run/confidential-containers/attestation-agent/attestation-agent.sock";
+const AA_ATTESTATION_URI: &str = concatcp!(UNIX_SOCKET_PREFIX, AA_ATTESTATION_SOCKET);
+
+const CDH_PATH: &str = "/usr/local/bin/confidential-data-hub";
+const CDH_SOCKET: &str = "/run/confidential-containers/cdh.sock";
+
+const API_SERVER_PATH: &str = "/usr/local/bin/api-server-rest";
+
+const DEFAULT_LAUNCH_PROCESS_TIMEOUT: i32 = 6;
+
 lazy_static! {
    static ref AGENT_CONFIG: AgentConfig =
        // Note: We can't do AgentOpts.parse() here to send through the processed arguments to AgentConfig
@@ -162,7 +180,7 @@ async fn create_logger_task(rfd: RawFd, vsock_port: u32, shutdown: Receiver<bool
    Ok(())
 }

-async fn real_main() -> std::result::Result<(), Box<dyn std::error::Error>> {
+async fn real_main(init_mode: bool) -> std::result::Result<(), Box<dyn std::error::Error>> {
    env::set_var("RUST_BACKTRACE", "full");

    // List of tasks that need to be stopped for a clean shutdown
@@ -175,7 +193,6 @@ async fn real_main() -> std::result::Result<(), Box<dyn std::error::Error>> {

    let (shutdown_tx, shutdown_rx) = channel(true);

-    let init_mode = unistd::getpid() == Pid::from_raw(1);
    if init_mode {
        // dup a new file descriptor for this temporary logger writer,
        // since this logger would be dropped and it's writer would
@@ -322,7 +339,15 @@ fn main() -> std::result::Result<(), Box<dyn std::error::Error>> {
        .enable_all()
        .build()?;

-    rt.block_on(real_main())
+    let init_mode = unistd::getpid() == Pid::from_raw(1);
+    let result = rt.block_on(real_main(init_mode));
+
+    if init_mode {
+        sync();
+        let _ = reboot(RebootMode::RB_POWER_OFF);
+    }
+
+    result
 }

 #[instrument]
@@ -354,14 +379,8 @@ async fn start_sandbox(
    #[cfg(feature = "guest-pull")]
    image::set_proxy_env_vars().await;

-    // - When init_mode is true, enabling the localhost link during the
-    //   handle_localhost call above is required before starting OPA with the
-    //   initialize_policy call below.
-    // - When init_mode is false, the Policy could be initialized earlier,
-    //   because initialize_policy doesn't start OPA. OPA is started by
-    //   systemd after localhost has been enabled.
    #[cfg(feature = "agent-policy")]
-    if let Err(e) = initialize_policy(init_mode).await {
+    if let Err(e) = initialize_policy().await {
        error!(logger, "Failed to initialize agent policy: {:?}", e);
        // Continuing execution without a security policy could be dangerous.
        std::process::abort();
@@ -384,6 +403,18 @@ async fn start_sandbox(
    let (tx, rx) = tokio::sync::oneshot::channel();
    sandbox.lock().await.sender = Some(tx);

+    let gc_procs = config.guest_components_procs;
+    if gc_procs != GuestComponentsProcs::None {
+        if !attestation_binaries_available(logger, &gc_procs) {
+            warn!(
+                logger,
+                "attestation binaries requested for launch not available"
+            );
+        } else {
+            init_attestation_components(logger, config)?;
+        }
+    }
+
    // vsock:///dev/vsock, port
    let mut server = rpc::start(sandbox.clone(), config.server_addr.as_str(), init_mode).await?;
    server.start().await?;
@@ -394,6 +425,124 @@ async fn start_sandbox(
    Ok(())
 }

+// Check if required attestation binaries are available on the rootfs.
+fn attestation_binaries_available(logger: &Logger, procs: &GuestComponentsProcs) -> bool {
+    let binaries = match procs {
+        GuestComponentsProcs::AttestationAgent => vec![AA_PATH],
+        GuestComponentsProcs::ConfidentialDataHub => vec![AA_PATH, CDH_PATH],
+        GuestComponentsProcs::ApiServerRest => vec![AA_PATH, CDH_PATH, API_SERVER_PATH],
+        _ => vec![],
+    };
+    for binary in binaries.iter() {
+        if !Path::new(binary).exists() {
+            warn!(logger, "{} not found", binary);
+            return false;
+        }
+    }
+    true
+}
+
+// Start-up attestation-agent, CDH and api-server-rest if they are packaged in the rootfs
+// and the corresponding procs are enabled in the agent configuration. the process will be
+// launched in the background and the function will return immediately.
+fn init_attestation_components(logger: &Logger, config: &AgentConfig) -> Result<()> {
+    // skip launch of any guest-component
+    if config.guest_components_procs == GuestComponentsProcs::None {
+        return Ok(());
+    }
+
+    debug!(logger, "spawning attestation-agent process {}", AA_PATH);
+    launch_process(
+        logger,
+        AA_PATH,
+        &vec!["--attestation_sock", AA_ATTESTATION_URI],
+        AA_ATTESTATION_SOCKET,
+        DEFAULT_LAUNCH_PROCESS_TIMEOUT,
+    )
+    .map_err(|e| anyhow!("launch_process {} failed: {:?}", AA_PATH, e))?;
+
+    // skip launch of confidential-data-hub and api-server-rest
+    if config.guest_components_procs == GuestComponentsProcs::AttestationAgent {
+        return Ok(());
+    }
+
+    debug!(
+        logger,
+        "spawning confidential-data-hub process {}", CDH_PATH
+    );
+    launch_process(
+        logger,
+        CDH_PATH,
+        &vec![],
+        CDH_SOCKET,
+        DEFAULT_LAUNCH_PROCESS_TIMEOUT,
+    )
+    .map_err(|e| anyhow!("launch_process {} failed: {:?}", CDH_PATH, e))?;
+
+    // skip launch of api-server-rest
+    if config.guest_components_procs == GuestComponentsProcs::ConfidentialDataHub {
+        return Ok(());
+    }
+
+    let features = config.guest_components_rest_api;
+    debug!(
+        logger,
+        "spawning api-server-rest process {} --features {}", API_SERVER_PATH, features
+    );
+    launch_process(
+        logger,
+        API_SERVER_PATH,
+        &vec!["--features", &features.to_string()],
+        "",
+        0,
+    )
+    .map_err(|e| anyhow!("launch_process {} failed: {:?}", API_SERVER_PATH, e))?;
+
+    Ok(())
+}
+
+fn wait_for_path_to_exist(logger: &Logger, path: &str, timeout_secs: i32) -> Result<()> {
+    let p = Path::new(path);
+    let mut attempts = 0;
+    loop {
+        std::thread::sleep(std::time::Duration::from_secs(1));
+        if p.exists() {
+            return Ok(());
+        }
+        if attempts >= timeout_secs {
+            break;
+        }
+        attempts += 1;
+        info!(
+            logger,
+            "waiting for {} to exist (attempts={})", path, attempts
+        );
+    }
+
+    Err(anyhow!("wait for {} to exist timeout.", path))
+}
+
+fn launch_process(
+    logger: &Logger,
+    path: &str,
+    args: &Vec<&str>,
+    unix_socket_path: &str,
+    timeout_secs: i32,
+) -> Result<()> {
+    if !Path::new(path).exists() {
+        return Err(anyhow!("path {} does not exist.", path));
+    }
+    if !unix_socket_path.is_empty() && Path::new(unix_socket_path).exists() {
+        fs::remove_file(unix_socket_path)?;
+    }
+    Command::new(path).args(args).spawn()?;
+    if !unix_socket_path.is_empty() && timeout_secs > 0 {
+        wait_for_path_to_exist(logger, unix_socket_path, timeout_secs)?;
+    }
+
+    Ok(())
+}
+
 // init_agent_as_init will do the initializations such as setting up the rootfs
 // when this agent has been run as the init process.
 fn init_agent_as_init(logger: &Logger, unified_cgroup_hierarchy: bool) -> Result<()> {
@@ -429,14 +578,11 @@ fn init_agent_as_init(logger: &Logger, unified_cgroup_hierarchy: bool) -> Result
 }

 #[cfg(feature = "agent-policy")]
-async fn initialize_policy(init_mode: bool) -> Result<()> {
-    let opa_addr = "localhost:8181";
-    let agent_policy_path = "/agent_policy";
-    let default_agent_policy = "/etc/kata-opa/default-policy.rego";
+async fn initialize_policy() -> Result<()> {
    AGENT_POLICY
        .lock()
        .await
-        .initialize(init_mode, opa_addr, agent_policy_path, default_agent_policy)
+        .initialize("/etc/kata-opa/default-policy.rego")
        .await
 }

--- a/src/agent/src/mount.rs
+++ b/src/agent/src/mount.rs
@@ -180,7 +180,7 @@ pub fn get_mount_fs_type_from_file(mount_file: &str, mount_point: &str) -> Resul
    let re = Regex::new(format!("device .+ mounted on {} with fstype (.+)", mount_point).as_str())?;

    // Read the file line by line using the lines() iterator from std::io::BufRead.
-    for (_index, line) in content.lines().enumerate() {
+    for line in content.lines() {
        if let Some(capes) = re.captures(line) {
            if capes.len() > 1 {
                return Ok(capes[1].to_string());
@@ -225,7 +225,7 @@ pub fn get_cgroup_mounts(

    // #subsys_name    hierarchy       num_cgroups     enabled
    // fields[0]       fields[1]       fields[2]       fields[3]
-    'outer: for (_, line) in reader.lines().enumerate() {
+    'outer: for line in reader.lines() {
        let line = line?;

        let fields: Vec<&str> = line.split('\t').collect();
--- a/src/agent/src/namespace.rs
+++ b/src/agent/src/namespace.rs
@@ -182,6 +182,7 @@ mod tests {
    use super::{Namespace, NamespaceType};
    use crate::mount::remove_mounts;
    use nix::sched::CloneFlags;
+    use rstest::rstest;
    use tempfile::Builder;
    use test_utils::skip_if_not_root;

@@ -226,26 +227,23 @@ mod tests {
        assert!(ns_pid.is_err());
    }

-    #[test]
-    fn test_namespace_type() {
-        let ipc = NamespaceType::Ipc;
-        assert_eq!("ipc", ipc.get());
-        assert_eq!(CloneFlags::CLONE_NEWIPC, ipc.get_flags());
-
-        let uts = NamespaceType::Uts;
-        assert_eq!("uts", uts.get());
-        assert_eq!(CloneFlags::CLONE_NEWUTS, uts.get_flags());
-
-        let pid = NamespaceType::Pid;
-        assert_eq!("pid", pid.get());
-        assert_eq!(CloneFlags::CLONE_NEWPID, pid.get_flags());
+    #[rstest]
+    #[case::ipc(NamespaceType::Ipc, "ipc", CloneFlags::CLONE_NEWIPC)]
+    #[case::uts(NamespaceType::Uts, "uts", CloneFlags::CLONE_NEWUTS)]
+    #[case::pid(NamespaceType::Pid, "pid", CloneFlags::CLONE_NEWPID)]
+    fn test_namespace_type(
+        #[case] ns_type: NamespaceType,
+        #[case] ns_name: &str,
+        #[case] ns_flag: CloneFlags,
+    ) {
+        assert_eq!(ns_name, ns_type.get());
+        assert_eq!(ns_flag, ns_type.get_flags());
    }

    #[test]
    fn test_new() {
        // Create dummy logger and temp folder.
        let logger = slog::Logger::root(slog::Discard, o!());
-
        let ns_ipc = Namespace::new(&logger);
        assert_eq!(NamespaceType::Ipc, ns_ipc.ns_type);
    }
@@ -301,65 +299,20 @@ mod tests {
        assert_eq!(ns_root.persistent_ns_dir, tmpdir.path().to_str().unwrap());
    }

-    #[test]
-    fn test_namespace_type_get() {
-        #[derive(Debug)]
-        struct TestData<'a> {
-            ns_type: NamespaceType,
-            str: &'a str,
-        }
-
-        let tests = &[
-            TestData {
-                ns_type: NamespaceType::Ipc,
-                str: "ipc",
-            },
-            TestData {
-                ns_type: NamespaceType::Uts,
-                str: "uts",
-            },
-            TestData {
-                ns_type: NamespaceType::Pid,
-                str: "pid",
-            },
-        ];
-
-        // Run the tests
-        for (i, d) in tests.iter().enumerate() {
-            // Create a string containing details of the test
-            let msg = format!("test[{}]: {:?}", i, d);
-            assert_eq!(d.str, d.ns_type.get(), "{}", msg)
-        }
+    #[rstest]
+    #[case::namespace_type_get_ipc(NamespaceType::Ipc, "ipc")]
+    #[case::namespace_type_get_uts(NamespaceType::Uts, "uts")]
+    #[case::namespace_type_get_pid(NamespaceType::Pid, "pid")]
+    fn test_namespace_type_get(#[case] ns_type: NamespaceType, #[case] ns_name: &str) {
+        assert_eq!(ns_name, ns_type.get())
    }

-    #[test]
-    fn test_namespace_type_get_flags() {
-        #[derive(Debug)]
-        struct TestData {
-            ns_type: NamespaceType,
-            ns_flag: CloneFlags,
-        }
-
-        let tests = &[
-            TestData {
-                ns_type: NamespaceType::Ipc,
-                ns_flag: CloneFlags::CLONE_NEWIPC,
-            },
-            TestData {
-                ns_type: NamespaceType::Uts,
-                ns_flag: CloneFlags::CLONE_NEWUTS,
-            },
-            TestData {
-                ns_type: NamespaceType::Pid,
-                ns_flag: CloneFlags::CLONE_NEWPID,
-            },
-        ];
-
+    #[rstest]
+    #[case::namespace_type_get_flags_ipc(NamespaceType::Ipc, CloneFlags::CLONE_NEWIPC)]
+    #[case::namespace_type_get_flags_uts(NamespaceType::Uts, CloneFlags::CLONE_NEWUTS)]
+    #[case::namespace_type_get_flags_pid(NamespaceType::Pid, CloneFlags::CLONE_NEWPID)]
+    fn test_namespace_type_get_flags(#[case] ns_type: NamespaceType, #[case] ns_flag: CloneFlags) {
        // Run the tests
-        for (i, d) in tests.iter().enumerate() {
-            // Create a string containing details of the test
-            let msg = format!("test[{}]: {:?}", i, d);
-            assert_eq!(d.ns_flag, d.ns_type.get_flags(), "{}", msg)
-        }
+        assert_eq!(ns_flag, ns_type.get_flags())
    }
 }
--- a/src/agent/src/policy.rs
+++ b/src/agent/src/policy.rs
@@ -3,21 +3,14 @@
 // SPDX-License-Identifier: Apache-2.0
 //

-use anyhow::{bail, Result};
+use anyhow::Result;
 use protobuf::MessageDyn;
-use serde::{Deserialize, Serialize};
 use slog::Drain;
 use tokio::io::AsyncWriteExt;
-use tokio::time::{sleep, Duration};

 use crate::rpc::ttrpc_error;
 use crate::AGENT_POLICY;

-static EMPTY_JSON_INPUT: &str = "{\"input\":{}}";
-
-static OPA_DATA_PATH: &str = "/data";
-static OPA_POLICIES_PATH: &str = "/policies";
-
 static POLICY_LOG_FILE: &str = "/tmp/policy.txt";

 /// Convenience macro to obtain the scope logger
@@ -28,14 +21,21 @@ macro_rules! sl {
 }

 async fn allow_request(policy: &mut AgentPolicy, ep: &str, request: &str) -> ttrpc::Result<()> {
-    if !policy.allow_request(ep, request).await {
-        warn!(sl!(), "{ep} is blocked by policy");
-        Err(ttrpc_error(
-            ttrpc::Code::PERMISSION_DENIED,
-            format!("{ep} is blocked by policy"),
-        ))
-    } else {
-        Ok(())
+    match policy.allow_request(ep, request).await {
+        Ok((allowed, prints)) => {
+            if allowed {
+                Ok(())
+            } else {
+                Err(ttrpc_error(
+                    ttrpc::Code::PERMISSION_DENIED,
+                    format!("{ep} is blocked by policy: {prints}"),
+                ))
+            }
+        }
+        Err(e) => Err(ttrpc_error(
+            ttrpc::Code::INTERNAL,
+            format!("{ep}: internal error {e}"),
+        )),
    }
 }

@@ -55,32 +55,17 @@ pub async fn do_set_policy(req: &protocols::agent::SetPolicyRequest) -> ttrpc::R
        .map_err(|e| ttrpc_error(ttrpc::Code::INVALID_ARGUMENT, e))
 }

-/// Example of HTTP response from OPA: {"result":true}
-#[derive(Debug, Serialize, Deserialize)]
-struct AllowResponse {
-    result: bool,
-}
-
 /// Singleton policy object.
 #[derive(Debug, Default)]
 pub struct AgentPolicy {
    /// When true policy errors are ignored, for debug purposes.
    allow_failures: bool,

-    /// OPA path used to query if an Agent gRPC request should be allowed.
-    /// The request name (e.g., CreateContainerRequest) must be added to
-    /// this path.
-    query_path: String,
-
-    /// OPA path used to add or delete a rego format Policy.
-    policy_path: String,
-
-    /// Client used to connect a single time to the OPA service and reused
-    /// for all the future communication with OPA.
-    opa_client: Option<reqwest::Client>,
-
    /// "/tmp/policy.txt" log file for policy activity.
    log_file: Option<tokio::fs::File>,
+
+    /// Regorus engine
+    engine: regorus::Engine,
 }

 impl AgentPolicy {
@@ -88,18 +73,20 @@ impl AgentPolicy {
    pub fn new() -> Self {
        Self {
            allow_failures: false,
+            engine: Self::new_engine(),
            ..Default::default()
        }
    }

-    /// Wait for OPA to start and connect to it.
-    pub async fn initialize(
-        &mut self,
-        launch_opa: bool,
-        opa_addr: &str,
-        policy_name: &str,
-        default_policy: &str,
-    ) -> Result<()> {
+    fn new_engine() -> regorus::Engine {
+        let mut engine = regorus::Engine::new();
+        engine.set_strict_builtin_errors(false);
+        engine.set_gather_prints(true);
+        engine
+    }
+
+    /// Initialize regorus.
+    pub async fn initialize(&mut self, default_policy_file: &str) -> Result<()> {
        if sl!().is_enabled(slog::Level::Debug) {
            self.log_file = Some(
                tokio::fs::OpenOptions::new()
@@ -112,147 +99,45 @@ impl AgentPolicy {
            debug!(sl!(), "policy: log file: {}", POLICY_LOG_FILE);
        }

-        if launch_opa {
-            start_opa(opa_addr)?;
-        }
-
-        let opa_uri = format!("http://{opa_addr}/v1");
-        self.query_path = format!("{opa_uri}{OPA_DATA_PATH}{policy_name}/");
-        self.policy_path = format!("{opa_uri}{OPA_POLICIES_PATH}{policy_name}");
-        let opa_client = reqwest::Client::builder().http1_only().build()?;
-        let policy = tokio::fs::read_to_string(default_policy).await?;
-
-        // This loop is necessary to get the opa_client connected to the
-        // OPA service while that service is starting. Future requests to
-        // OPA are expected to work without retrying, after connecting
-        // successfully for the first time.
-        for i in 0..50 {
-            if i > 0 {
-                sleep(Duration::from_millis(100)).await;
-                debug!(sl!(), "policy initialize: PUT failed, retrying");
-            }
-
-            // Set-up the default policy.
-            if opa_client
-                .put(&self.policy_path)
-                .body(policy.clone())
-                .send()
-                .await
-                .is_ok()
-            {
-                self.opa_client = Some(opa_client);
-
-                // Check if requests causing policy errors should actually
-                // be allowed. That is an insecure configuration but is
-                // useful for allowing insecure pods to start, then connect to
-                // them and inspect Guest logs for the root cause of a failure.
-                //
-                // Note that post_query returns Ok(false) in case
-                // AllowRequestsFailingPolicy was not defined in the policy.
-                self.allow_failures = self
-                    .post_query("AllowRequestsFailingPolicy", EMPTY_JSON_INPUT)
-                    .await?;
-                return Ok(());
-            }
-        }
-        bail!("Failed to connect to OPA")
+        self.engine.add_policy_from_file(default_policy_file)?;
+        self.engine.set_input_json("{}")?;
+        self.allow_failures = match self.allow_request("AllowRequestsFailingPolicy", "{}").await {
+            Ok((allowed, _prints)) => allowed,
+            Err(_) => false,
+        };
+        Ok(())
    }

-    /// Ask OPA to check if an API call should be allowed or not.
-    pub async fn allow_request(&mut self, ep: &str, request: &str) -> bool {
-        let post_input = format!("{{\"input\":{request}}}");
-        self.log_opa_input(ep, &post_input).await;
-        match self.post_query(ep, &post_input).await {
-            Err(e) => {
-                debug!(
-                    sl!(),
-                    "policy: failed to query endpoint {}: {:?}. Returning false.", ep, e
-                );
-                false
-            }
-            Ok(allowed) => allowed,
-        }
-    }
-
-    /// Replace the Policy in OPA.
-    pub async fn set_policy(&mut self, policy: &str) -> Result<()> {
-        if let Some(opa_client) = &mut self.opa_client {
-            // Delete the old rules.
-            opa_client.delete(&self.policy_path).send().await?;
-
-            // Put the new rules.
-            opa_client
-                .put(&self.policy_path)
-                .body(policy.to_string())
-                .send()
-                .await?;
-
-            // Check if requests causing policy errors should actually be allowed.
-            // That is an insecure configuration but is useful for allowing insecure
-            // pods to start, then connect to them and inspect Guest logs for the
-            // root cause of a failure.
-            //
-            // Note that post_query returns Ok(false) in case
-            // AllowRequestsFailingPolicy was not defined in the policy.
-            self.allow_failures = self
-                .post_query("AllowRequestsFailingPolicy", EMPTY_JSON_INPUT)
-                .await?;
-
-            Ok(())
-        } else {
-            bail!("Agent Policy is not initialized")
-        }
-    }
-
-    // Post query to OPA.
-    async fn post_query(&mut self, ep: &str, post_input: &str) -> Result<bool> {
+    /// Ask regorus if an API call should be allowed or not.
+    async fn allow_request(&mut self, ep: &str, ep_input: &str) -> Result<(bool, String)> {
        debug!(sl!(), "policy check: {ep}");
+        self.log_eval_input(ep, ep_input).await;

-        if let Some(opa_client) = &mut self.opa_client {
-            let uri = format!("{}{ep}", &self.query_path);
-            let response = opa_client
-                .post(uri)
-                .body(post_input.to_string())
-                .send()
-                .await?;
+        let query = format!("data.agent_policy.{ep}");
+        self.engine.set_input_json(ep_input)?;

-            if response.status() != http::StatusCode::OK {
-                bail!("policy: POST {} response status {}", ep, response.status());
-            }
-
-            let http_response = response.text().await?;
-            let opa_response: serde_json::Result<AllowResponse> =
-                serde_json::from_str(&http_response);
-
-            match opa_response {
-                Ok(resp) => {
-                    if !resp.result {
-                        if self.allow_failures {
-                            warn!(
-                                sl!(),
-                                "policy: POST {} response <{}>. Ignoring error!", ep, http_response
-                            );
-                            return Ok(true);
-                        } else {
-                            error!(sl!(), "policy: POST {} response <{}>", ep, http_response);
-                        }
-                    }
-                    Ok(resp.result)
-                }
-                Err(_) => {
-                    warn!(
-                        sl!(),
-                        "policy: endpoint {} not found in policy. Returning false.", ep,
-                    );
-                    Ok(false)
-                }
-            }
-        } else {
-            bail!("Agent Policy is not initialized")
+        let mut allow = self.engine.eval_bool_query(query, false)?;
+        if !allow && self.allow_failures {
+            allow = true;
        }
+
+        let prints = match self.engine.take_prints() {
+            Ok(p) => p.join(" "),
+            Err(e) => format!("Failed to get policy log: {e}"),
+        };
+
+        Ok((allow, prints))
    }

-    async fn log_opa_input(&mut self, ep: &str, input: &str) {
+    /// Replace the Policy in regorus.
+    pub async fn set_policy(&mut self, policy: &str) -> Result<()> {
+        self.engine = Self::new_engine();
+        self.engine
+            .add_policy("agent_policy".to_string(), policy.to_string())?;
+        Ok(())
+    }
+
+    async fn log_eval_input(&mut self, ep: &str, input: &str) {
        if let Some(log_file) = &mut self.log_file {
            match ep {
                "StatsContainerRequest" | "ReadStreamRequest" | "SetPolicyRequest" => {
@@ -267,33 +152,12 @@ impl AgentPolicy {
                    let log_entry = format!("[\"ep\":\"{ep}\",{input}],\n\n");

                    if let Err(e) = log_file.write_all(log_entry.as_bytes()).await {
-                        warn!(sl!(), "policy: log_opa_input: write_all failed: {}", e);
+                        warn!(sl!(), "policy: log_eval_input: write_all failed: {}", e);
                    } else if let Err(e) = log_file.flush().await {
-                        warn!(sl!(), "policy: log_opa_input: flush failed: {}", e);
+                        warn!(sl!(), "policy: log_eval_input: flush failed: {}", e);
                    }
                }
            }
        }
    }
 }
-
-fn start_opa(opa_addr: &str) -> Result<()> {
-    let bin_dirs = vec!["/bin", "/usr/bin", "/usr/local/bin"];
-    for bin_dir in &bin_dirs {
-        let opa_path = bin_dir.to_string() + "/opa";
-        if std::fs::metadata(&opa_path).is_ok() {
-            // args copied from kata-opa.service.in.
-            std::process::Command::new(&opa_path)
-                .arg("run")
-                .arg("--server")
-                .arg("--disable-telemetry")
-                .arg("--addr")
-                .arg(opa_addr)
-                .arg("--log-level")
-                .arg("info")
-                .spawn()?;
-            return Ok(());
-        }
-    }
-    bail!("OPA binary not found in {:?}", &bin_dirs);
-}
--- a/src/agent/src/rpc.rs
+++ b/src/agent/src/rpc.rs
@@ -179,6 +179,14 @@ impl AgentService {
        &self,
        req: protocols::agent::CreateContainerRequest,
    ) -> Result<()> {
+        // create the proc_io first, in case there's some error occur below, thus we can make sure
+        // the io stream closed when error occur.
+        let proc_io = if AGENT_CONFIG.passfd_listener_port != 0 {
+            Some(passfd_io::take_io_streams(req.stdin_port, req.stdout_port, req.stderr_port).await)
+        } else {
+            None
+        };
+
        let cid = req.container_id.clone();

        kata_sys_util::validate::verify_id(&cid)?;
@@ -205,10 +213,7 @@ impl AgentService {
        // In case of pulling image inside guest, we need to merge the image bundle OCI spec
        // into the container creation request OCI spec.
        #[cfg(feature = "guest-pull")]
-        {
-            let image_service = image::ImageService::singleton().await?;
-            image_service.merge_bundle_oci(&mut oci).await?;
-        }
+        image::merge_bundle_oci(&mut oci).await?;

        // Some devices need some extra processing (the ones invoked with
        // --device for instance), and that's what this call is doing. It
@@ -273,14 +278,6 @@ impl AgentService {
        let pipe_size = AGENT_CONFIG.container_pipe_size;

        let p = if let Some(p) = oci.process {
-            let proc_io = if AGENT_CONFIG.passfd_listener_port != 0 {
-                Some(
-                    passfd_io::take_io_streams(req.stdin_port, req.stdout_port, req.stderr_port)
-                        .await,
-                )
-            } else {
-                None
-            };
            Process::new(&sl(), &p, cid.as_str(), true, pipe_size, proc_io)?
        } else {
            info!(sl(), "no process configurations!");
@@ -379,6 +376,14 @@ impl AgentService {

        info!(sl(), "do_exec_process cid: {} eid: {}", cid, exec_id);

+        // create the proc_io first, in case there's some error occur below, thus we can make sure
+        // the io stream closed when error occur.
+        let proc_io = if AGENT_CONFIG.passfd_listener_port != 0 {
+            Some(passfd_io::take_io_streams(req.stdin_port, req.stdout_port, req.stderr_port).await)
+        } else {
+            None
+        };
+
        let mut sandbox = self.sandbox.lock().await;
        let mut process = req
            .process
@@ -391,13 +396,6 @@ impl AgentService {
        let pipe_size = AGENT_CONFIG.container_pipe_size;
        let ocip = rustjail::process_grpc_to_oci(&process);

-        // passfd_listener_port != 0 indicates passfd io mode
-        let proc_io = if AGENT_CONFIG.passfd_listener_port != 0 {
-            Some(passfd_io::take_io_streams(req.stdin_port, req.stdout_port, req.stderr_port).await)
-        } else {
-            None
-        };
-
        let p = Process::new(&sl(), &ocip, exec_id.as_str(), false, pipe_size, proc_io)?;

        let ctr = sandbox
@@ -1171,15 +1169,6 @@ impl agent_ttrpc::AgentService for AgentService {
            s.hostname = req.hostname.clone();
            s.running = true;

-            if !req.guest_hook_path.is_empty() {
-                let _ = s.add_hooks(&req.guest_hook_path).map_err(|e| {
-                    error!(
-                        sl(),
-                        "add guest hook {} failed: {:?}", req.guest_hook_path, e
-                    );
-                });
-            }
-
            if !req.sandbox_id.is_empty() {
                s.id = req.sandbox_id.clone();
            }
@@ -1191,11 +1180,25 @@ impl agent_ttrpc::AgentService for AgentService {
            s.setup_shared_namespaces().await.map_ttrpc_err(same)?;
        }

-        let m = add_storages(sl(), req.storages, &self.sandbox, None)
+        let m = add_storages(sl(), req.storages.clone(), &self.sandbox, None)
            .await
            .map_ttrpc_err(same)?;
        self.sandbox.lock().await.mounts = m;

+        // Scan guest hooks upon creating new sandbox and append
+        // them to guest OCI spec before running containers.
+        {
+            let mut s = self.sandbox.lock().await;
+            if !req.guest_hook_path.is_empty() {
+                let _ = s.add_hooks(&req.guest_hook_path).map_err(|e| {
+                    error!(
+                        sl(),
+                        "add guest hook {} failed: {:?}", req.guest_hook_path, e
+                    );
+                });
+            }
+        }
+
        setup_guest_dns(sl(), &req.dns).map_ttrpc_err(same)?;
        {
            let mut s = self.sandbox.lock().await;
@@ -1609,10 +1612,8 @@ pub async fn start(
    let hservice = health_ttrpc::create_health(Arc::new(health_service));

    #[cfg(feature = "guest-pull")]
-    {
-        let image_service = image::ImageService::new();
-        *image::IMAGE_SERVICE.lock().await = Some(image_service.clone());
-    }
+    image::init_image_service().await;
+
    let server = TtrpcServer::new()
        .bind(server_address)?
        .register_service(aservice)
@@ -1751,7 +1752,7 @@ fn is_signal_handled(proc_status_file: &str, signum: u32) -> bool {
    // read lines start with SigBlk/SigIgn/SigCgt and check any match the signal mask
    reader
        .lines()
-        .flatten()
+        .map_while(Result::ok)
        .filter(|line| {
            line.starts_with("SigBlk:")
                || line.starts_with("SigIgn:")
--- a/src/agent/src/signal.rs
+++ b/src/agent/src/signal.rs
@@ -144,15 +144,12 @@ mod tests {

        tx.send(true).expect("failed to request shutdown");

-        loop {
-            select! {
-                _ = handle => {
-                    println!("INFO: task completed");
-                    break;
-                },
-                _ = &mut timeout => {
-                    panic!("signal thread failed to stop");
-                }
+        select! {
+            _ = handle => {
+                println!("INFO: task completed");
+            },
+            _ = &mut timeout => {
+                panic!("signal thread failed to stop");
            }
        }
    }
--- a/src/agent/src/storage/image_pull_handler.rs
+++ b/src/agent/src/storage/image_pull_handler.rs
@@ -49,10 +49,7 @@ impl StorageHandler for ImagePullHandler {
            .cid
            .clone()
            .ok_or_else(|| anyhow!("failed to get container id"))?;
-        let image_service = image::ImageService::singleton().await?;
-        let bundle_path = image_service
-            .pull_image(image_name, &cid, &image_pull_volume.metadata)
-            .await?;
+        let bundle_path = image::pull_image(image_name, &cid, &image_pull_volume.metadata).await?;

        storage.source = bundle_path;
        storage.options = vec!["bind".to_string(), "ro".to_string()];
--- a/src/agent/src/util.rs
+++ b/src/agent/src/util.rs
@@ -75,6 +75,7 @@ pub async fn get_vsock_stream(fd: RawFd) -> Result<VsockStream> {
 #[cfg(test)]
 mod tests {
    use super::*;
+    use rstest::rstest;
    use std::io;
    use std::io::Cursor;
    use std::io::Write;
@@ -172,88 +173,55 @@ mod tests {
        }
    }

+    #[rstest]
+    #[case("".into())]
+    #[case("a".into())]
+    #[case("foo".into())]
+    #[case("b".repeat(BUF_SIZE - 1))]
+    #[case("c".repeat(BUF_SIZE))]
+    #[case("d".repeat(BUF_SIZE + 1))]
+    #[case("e".repeat((2 * BUF_SIZE) - 1))]
+    #[case("f".repeat(2 * BUF_SIZE))]
+    #[case("g".repeat((2 * BUF_SIZE) + 1))]
    #[tokio::test(flavor = "multi_thread", worker_threads = 2)]
-    async fn test_interruptable_io_copier_reader() {
-        #[derive(Debug)]
-        struct TestData {
-            reader_value: String,
+    async fn test_interruptable_io_copier_reader(#[case] reader_value: String) {
+        let (tx, rx) = channel(true);
+        let reader = Cursor::new(reader_value.clone());
+        let writer = BufWriter::new();
+
+        // XXX: Pass a copy of the writer to the copier to allow the
+        // result of the write operation to be checked below.
+        let handle = tokio::spawn(interruptable_io_copier(reader, writer.clone(), rx));
+
+        // Allow time for the thread to be spawned.
+        tokio::time::sleep(Duration::from_secs(1)).await;
+
+        let timeout = tokio::time::sleep(Duration::from_secs(1));
+        pin!(timeout);
+
+        // Since the readers only specify a small number of bytes, the
+        // copier will quickly read zero and kill the task, closing the
+        // Receiver.
+        assert!(tx.is_closed());
+
+        let spawn_result: std::result::Result<std::result::Result<u64, std::io::Error>, JoinError>;
+
+        select! {
+            res = handle => spawn_result = res,
+            _ = &mut timeout => panic!("timed out"),
        }

-        let tests = &[
-            TestData {
-                reader_value: "".into(),
-            },
-            TestData {
-                reader_value: "a".into(),
-            },
-            TestData {
-                reader_value: "foo".into(),
-            },
-            TestData {
-                reader_value: "b".repeat(BUF_SIZE - 1),
-            },
-            TestData {
-                reader_value: "c".repeat(BUF_SIZE),
-            },
-            TestData {
-                reader_value: "d".repeat(BUF_SIZE + 1),
-            },
-            TestData {
-                reader_value: "e".repeat((2 * BUF_SIZE) - 1),
-            },
-            TestData {
-                reader_value: "f".repeat(2 * BUF_SIZE),
-            },
-            TestData {
-                reader_value: "g".repeat((2 * BUF_SIZE) + 1),
-            },
-        ];
+        assert!(spawn_result.is_ok());

-        for (i, d) in tests.iter().enumerate() {
-            // Create a string containing details of the test
-            let msg = format!("test[{}]: {:?}", i, d);
+        let result: std::result::Result<u64, std::io::Error> = spawn_result.unwrap();

-            let (tx, rx) = channel(true);
-            let reader = Cursor::new(d.reader_value.clone());
-            let writer = BufWriter::new();
+        assert!(result.is_ok());

-            // XXX: Pass a copy of the writer to the copier to allow the
-            // result of the write operation to be checked below.
-            let handle = tokio::spawn(interruptable_io_copier(reader, writer.clone(), rx));
+        let byte_count = result.unwrap() as usize;
+        assert_eq!(byte_count, reader_value.len());

-            // Allow time for the thread to be spawned.
-            tokio::time::sleep(Duration::from_secs(1)).await;
-
-            let timeout = tokio::time::sleep(Duration::from_secs(1));
-            pin!(timeout);
-
-            // Since the readers only specify a small number of bytes, the
-            // copier will quickly read zero and kill the task, closing the
-            // Receiver.
-            assert!(tx.is_closed(), "{}", msg);
-
-            let spawn_result: std::result::Result<
-                std::result::Result<u64, std::io::Error>,
-                JoinError,
-            >;
-
-            select! {
-                res = handle => spawn_result = res,
-                _ = &mut timeout => panic!("timed out"),
-            }
-
-            assert!(spawn_result.is_ok());
-
-            let result: std::result::Result<u64, std::io::Error> = spawn_result.unwrap();
-
-            assert!(result.is_ok());
-
-            let byte_count = result.unwrap() as usize;
-            assert_eq!(byte_count, d.reader_value.len(), "{}", msg);
-
-            let value = writer.to_string();
-            assert_eq!(value, d.reader_value, "{}", msg);
-        }
+        let value = writer.to_string();
+        assert_eq!(value, reader_value);
    }

    #[tokio::test(flavor = "multi_thread", worker_threads = 2)]
--- a/src/dragonball/src/address_space_manager.rs
+++ b/src/dragonball/src/address_space_manager.rs
@@ -644,10 +644,7 @@ impl AddressSpaceMgr {
        guest_numa_node_id: u32,
        vcpu_ids: &[u32],
    ) {
-        let node = self
-            .numa_nodes
-            .entry(guest_numa_node_id)
-            .or_insert_with(NumaNode::new);
+        let node = self.numa_nodes.entry(guest_numa_node_id).or_default();
        node.add_info(&NumaNodeInfo {
            base: region.start_addr(),
            size: region.len(),
--- a/src/dragonball/src/dbs_arch/src/x86_64/regs.rs
+++ b/src/dragonball/src/dbs_arch/src/x86_64/regs.rs
@@ -379,7 +379,7 @@ mod tests {
        // tenth one (i.e the one with index msr_index::MSR_IA32_MISC_ENABLE has the data we
        // expect.
        let entry_vec = create_msr_entries();
-        assert_eq!(entry_vec[9], kvm_msrs.as_slice()[0]);
+        assert_eq!(entry_vec[10], kvm_msrs.as_slice()[0]);
    }

    #[test]
--- a/src/dragonball/src/dbs_virtio_devices/src/vsock/csm/connection.rs
+++ b/src/dragonball/src/dbs_virtio_devices/src/vsock/csm/connection.rs
@@ -460,7 +460,8 @@ impl VsockEpollListener for VsockConnection {
    /// Notify the connection about an event (or set of events) that it was
    /// interested in.
    fn notify(&mut self, evset: epoll::Events) {
-        if evset.contains(epoll::Events::EPOLLIN) {
+        // EPOLLHUP also needs to be read and will be got len 0
+        if evset.contains(epoll::Events::EPOLLIN) || evset.contains(epoll::Events::EPOLLHUP) {
            // Data can be read from the host stream. Setting a Rw pending
            // indication, so that the muxer will know to call `recv_pkt()`
            // later.
@@ -514,6 +515,19 @@ impl VsockEpollListener for VsockConnection {
                self.pending_rx.insert(PendingRx::CreditUpdate);
            }
        }
+
+        // The host stream has encountered an error. We'll kill this
+        // connection.
+        if evset.contains(epoll::Events::EPOLLERR)
+            && !evset.contains(epoll::Events::EPOLLIN)
+            && !evset.contains(epoll::Events::EPOLLOUT)
+        {
+            warn!(
+                "vsock: connection received EPOLLERR event: lp={}, pp={}",
+                self.local_port, self.peer_port
+            );
+            self.kill();
+        }
    }
 }

--- a/src/dragonball/src/device_manager/mod.rs
+++ b/src/dragonball/src/device_manager/mod.rs
@@ -424,7 +424,7 @@ impl DeviceOpContext {
    fn generate_virtio_device_info(&self) -> Result<HashMap<(DeviceType, String), MMIODeviceInfo>> {
        let mut dev_info = HashMap::new();
        #[cfg(feature = "dbs-virtio-devices")]
-        for (_index, device) in self.virtio_devices.iter().enumerate() {
+        for device in self.virtio_devices.iter() {
            let (mmio_base, mmio_size, irq) = DeviceManager::get_virtio_mmio_device_info(device)?;
            let dev_type;
            let device_id;
--- a/src/dragonball/src/device_manager/vfio_dev_mgr/pci_vfio.rs
+++ b/src/dragonball/src/device_manager/vfio_dev_mgr/pci_vfio.rs
@@ -3,6 +3,7 @@

 use std::sync::Arc;

+use dbs_boot::layout::{GUEST_MEM_END, GUEST_PHYS_END};
 #[cfg(any(target_arch = "x86", target_arch = "x86_64"))]
 use dbs_device::resources::Resource;
 use dbs_device::resources::{DeviceResources, ResourceConstraint};
@@ -19,6 +20,8 @@ use crate::resource_manager::ResourceManager;

 /// we only support one pci bus
 pub const PCI_BUS_DEFAULT: u8 = 0;
+/// The default mmio size for pci root bus.
+const PCI_MMIO_DEFAULT_SIZE: u64 = 2048u64 << 30;

 /// PCI pass-through device manager.
 #[derive(Clone)]
@@ -117,7 +120,7 @@ impl PciSystemManager {
        requests.push(ResourceConstraint::MmioAddress {
            range: Some((0x1_0000_0000, 0xffff_ffff_ffff_ffff)),
            align: 4096,
-            size: 2048u64 << 30,
+            size: Self::get_mmio_size(),
        });
        // allocate 8KB IO port
        requests.push(ResourceConstraint::PioAddress {
@@ -129,6 +132,14 @@ impl PciSystemManager {
        requests
    }

+    fn get_mmio_size() -> u64 {
+        if (*GUEST_PHYS_END - *GUEST_MEM_END) > PCI_MMIO_DEFAULT_SIZE {
+            PCI_MMIO_DEFAULT_SIZE
+        } else {
+            (*GUEST_PHYS_END - *GUEST_MEM_END) / 2
+        }
+    }
+
    /// Get the PCI root bus.
    pub fn pci_root_bus(&self) -> Arc<PciBus> {
        self.pci_root_bus.clone()
--- a/src/kata-opa/kata-opa.service.in
+++ b/src/kata-opa/kata-opa.service.in
@@ -1,29 +0,0 @@
-#
-# Copyright (c) 2023 Microsoft Corporation
-#
-# SPDX-License-Identifier: Apache-2.0
-#
-
-[Unit]
-Description=Open Policy Agent for Kata Containers
-Documentation=https://github.com/kata-containers
-ConditionPathExists=@SETTINGSDIR@/default-policy.rego
-
-# kata-agent connects to OPA while starting up.
-Before=kata-agent.service
-
-[Service]
-Type=simple
-ExecStart=@BINDIR@/opa run --server --disable-telemetry --addr 127.0.0.1:8181 --log-level info
-DynamicUser=yes
-RuntimeDirectory=kata-opa
-LimitNOFILE=1048576
-
-# Don't restart because there may be an active policy that would be lost.
-Restart=no
-
-# Send log output to tty to allow capturing debug logs from a VM vsock port.
-StandardError=tty
-
-# Discourage OOM-killer from touching the policy service.
-OOMScoreAdjust=-997
--- a/src/libs/Cargo.lock
+++ b/src/libs/Cargo.lock
@@ -748,9 +748,9 @@ checksum = "e2abad23fbc42b3700f2f279844dc832adb2b2eb069b2df918f455c4e18cc646"

 [[package]]
 name = "libc"
-version = "0.2.151"
+version = "0.2.155"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "302d7ab3130588088d277783b1e2d2e10c9e9e4a16dd9050e6ec93fb3e7048f4"
+checksum = "97b3888a4aecf77e811145cadf6eef5901f4782c53886191b2f693f24761847c"

 [[package]]
 name = "lock_api"
@@ -944,9 +944,9 @@ dependencies = [

 [[package]]
 name = "once_cell"
-version = "1.17.1"
+version = "1.19.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b7e5500299e16ebb147ae15a00a942af264cf3688f47923b8fc2cd5858f23ad3"
+checksum = "3fdb12b2476b595f9358c5161aa467c2438859caa136dec86c26fdd2efe17b92"

 [[package]]
 name = "parking_lot"
@@ -1588,9 +1588,9 @@ dependencies = [

 [[package]]
 name = "sysinfo"
-version = "0.29.11"
+version = "0.30.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cd727fc423c2060f6c92d9534cef765c65a6ed3f428a03d7def74a8c4348e666"
+checksum = "732ffa00f53e6b2af46208fba5718d9662a421049204e156328b66791ffa15ae"
 dependencies = [
 "cfg-if",
 "core-foundation-sys",
@@ -1598,7 +1598,7 @@ dependencies = [
 "ntapi 0.4.1",
 "once_cell",
 "rayon",
- "winapi",
+ "windows",
 ]

 [[package]]
@@ -2007,13 +2007,32 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "712e227841d057c1ee1cd2fb22fa7e5a5461ae8e48fa2ca79ec42cfc1931183f"

+[[package]]
+name = "windows"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e48a53791691ab099e5e2ad123536d0fff50652600abaf43bbf952894110d0be"
+dependencies = [
+ "windows-core",
+ "windows-targets 0.52.5",
+]
+
+[[package]]
+name = "windows-core"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "33ab640c8d7e35bf8ba19b884ba838ceb4fba93a4e8c65a9059d08afcfc683d9"
+dependencies = [
+ "windows-targets 0.52.5",
+]
+
 [[package]]
 name = "windows-sys"
 version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "677d2418bec65e3338edb076e806bc1ec15693c5d0104683f2efe857f61056a9"
 dependencies = [
- "windows-targets",
+ "windows-targets 0.48.5",
 ]

 [[package]]
@@ -2022,13 +2041,29 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9a2fa6e2155d7247be68c096456083145c183cbbbc2764150dda45a87197940c"
 dependencies = [
- "windows_aarch64_gnullvm",
- "windows_aarch64_msvc",
- "windows_i686_gnu",
- "windows_i686_msvc",
- "windows_x86_64_gnu",
- "windows_x86_64_gnullvm",
- "windows_x86_64_msvc",
+ "windows_aarch64_gnullvm 0.48.5",
+ "windows_aarch64_msvc 0.48.5",
+ "windows_i686_gnu 0.48.5",
+ "windows_i686_msvc 0.48.5",
+ "windows_x86_64_gnu 0.48.5",
+ "windows_x86_64_gnullvm 0.48.5",
+ "windows_x86_64_msvc 0.48.5",
+]
+
+[[package]]
+name = "windows-targets"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "6f0713a46559409d202e70e28227288446bf7841d3211583a4b53e3f6d96e7eb"
+dependencies = [
+ "windows_aarch64_gnullvm 0.52.5",
+ "windows_aarch64_msvc 0.52.5",
+ "windows_i686_gnu 0.52.5",
+ "windows_i686_gnullvm",
+ "windows_i686_msvc 0.52.5",
+ "windows_x86_64_gnu 0.52.5",
+ "windows_x86_64_gnullvm 0.52.5",
+ "windows_x86_64_msvc 0.52.5",
 ]

 [[package]]
@@ -2037,42 +2072,90 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2b38e32f0abccf9987a4e3079dfb67dcd799fb61361e53e2882c3cbaf0d905d8"

+[[package]]
+name = "windows_aarch64_gnullvm"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7088eed71e8b8dda258ecc8bac5fb1153c5cffaf2578fc8ff5d61e23578d3263"
+
 [[package]]
 name = "windows_aarch64_msvc"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "dc35310971f3b2dbbf3f0690a219f40e2d9afcf64f9ab7cc1be722937c26b4bc"

+[[package]]
+name = "windows_aarch64_msvc"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9985fd1504e250c615ca5f281c3f7a6da76213ebd5ccc9561496568a2752afb6"
+
 [[package]]
 name = "windows_i686_gnu"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a75915e7def60c94dcef72200b9a8e58e5091744960da64ec734a6c6e9b3743e"

+[[package]]
+name = "windows_i686_gnu"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "88ba073cf16d5372720ec942a8ccbf61626074c6d4dd2e745299726ce8b89670"
+
+[[package]]
+name = "windows_i686_gnullvm"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "87f4261229030a858f36b459e748ae97545d6f1ec60e5e0d6a3d32e0dc232ee9"
+
 [[package]]
 name = "windows_i686_msvc"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8f55c233f70c4b27f66c523580f78f1004e8b5a8b659e05a4eb49d4166cca406"

+[[package]]
+name = "windows_i686_msvc"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "db3c2bf3d13d5b658be73463284eaf12830ac9a26a90c717b7f771dfe97487bf"
+
 [[package]]
 name = "windows_x86_64_gnu"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "53d40abd2583d23e4718fddf1ebec84dbff8381c07cae67ff7768bbf19c6718e"

+[[package]]
+name = "windows_x86_64_gnu"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "4e4246f76bdeff09eb48875a0fd3e2af6aada79d409d33011886d3e1581517d9"
+
 [[package]]
 name = "windows_x86_64_gnullvm"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0b7b52767868a23d5bab768e390dc5f5c55825b6d30b86c844ff2dc7414044cc"

+[[package]]
+name = "windows_x86_64_gnullvm"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "852298e482cd67c356ddd9570386e2862b5673c85bd5f88df9ab6802b334c596"
+
 [[package]]
 name = "windows_x86_64_msvc"
 version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ed94fce61571a4006852b7389a063ab983c02eb1bb37b47f8272ce92d06d9538"

+[[package]]
+name = "windows_x86_64_msvc"
+version = "0.52.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "bec47e5bfd1bff0eeaf6d8b485cc1074891a197ab4225d504cb7a1ab88b02bf0"
+
 [[package]]
 name = "wyz"
 version = "0.5.1"
--- a/src/libs/kata-types/Cargo.toml
+++ b/src/libs/kata-types/Cargo.toml
@@ -26,7 +26,7 @@ serde_json = "1.0.73"
 thiserror = "1.0"
 toml = "0.5.8"
 serde-enum-str = "0.4"
-sysinfo = "0.29.11"
+sysinfo = "0.30.5"

 oci = { path = "../oci" }
 safe-path = { path = "../safe-path" }
--- a/src/libs/kata-types/src/capabilities.rs
+++ b/src/libs/kata-types/src/capabilities.rs
@@ -127,7 +127,7 @@ mod tests {
        assert!(cap.is_fs_sharing_supported());

        // test set hybrid-vsock support
-        cap.set(CapabilityBits::HybridVsockSupport);
+        cap.add(CapabilityBits::HybridVsockSupport);
        assert!(cap.is_hybrid_vsock_supported());
        // test append capabilities
        cap.add(CapabilityBits::GuestMemoryProbe);
--- a/src/libs/kata-types/src/config/hypervisor/mod.rs
+++ b/src/libs/kata-types/src/config/hypervisor/mod.rs
@@ -33,7 +33,7 @@ use std::collections::HashMap;
 use std::io::{self, Result};
 use std::path::Path;
 use std::sync::{Arc, Mutex};
-use sysinfo::{System, SystemExt};
+use sysinfo::System;

 mod dragonball;
 pub use self::dragonball::{DragonballConfig, HYPERVISOR_NAME_DRAGONBALL};
@@ -50,9 +50,15 @@ pub const VIRTIO_BLK_PCI: &str = "virtio-blk-pci";
 /// Virtual MMIO block device driver.
 pub const VIRTIO_BLK_MMIO: &str = "virtio-blk-mmio";

-const VIRTIO_BLK_CCW: &str = "virtio-blk-ccw";
-const VIRTIO_SCSI: &str = "virtio-scsi";
-const VIRTIO_PMEM: &str = "virtio-pmem";
+/// Virtual CCW block device driver.
+pub const VIRTIO_BLK_CCW: &str = "virtio-blk-ccw";
+
+/// Virtual SCSI block device driver.
+pub const VIRTIO_SCSI: &str = "virtio-scsi";
+
+/// Virtual PMEM device driver.
+pub const VIRTIO_PMEM: &str = "virtio-pmem";
+
 const VIRTIO_9P: &str = "virtio-9p";
 const VIRTIO_FS: &str = "virtio-fs";
 const VIRTIO_FS_INLINE: &str = "inline-virtio-fs";
@@ -405,6 +411,20 @@ pub struct DebugInfo {
    /// much disk space.
    #[serde(default)]
    pub guest_memory_dump_path: String,
+
+    /// This option allows to add a debug monitor socket when `enable_debug = true`
+    /// WARNING: Anyone with access to the monitor socket can take full control of
+    /// Qemu. This is for debugging purpose only and must *NEVER* be used in
+    /// production.
+    /// Valid values are :
+    /// - "hmp"
+    /// - "qmp"
+    /// - "qmp-pretty" (same as "qmp" with pretty json formatting)
+    /// If set to the empty string "", no debug monitor socket is added. This is
+    /// the default.
+    /// dbg_monitor_socket = "hmp"
+    #[serde(default)]
+    pub dbg_monitor_socket: String,
 }

 impl DebugInfo {
--- a/src/libs/kata-types/tests/texture/configuration-anno-0.toml
+++ b/src/libs/kata-types/tests/texture/configuration-anno-0.toml
@@ -84,6 +84,7 @@ sandbox_bind_mounts=["/proc/self"]
 vfio_mode="vfio"
 experimental=["a", "b"]
 enable_pprof = true
+name="virt-container"
 hypervisor_name = "qemu"
 agent_name = "agent0"

--- a/src/libs/kata-types/tests/texture/configuration-anno-1.toml
+++ b/src/libs/kata-types/tests/texture/configuration-anno-1.toml
@@ -83,6 +83,7 @@ sandbox_bind_mounts=["/proc/self"]
 vfio_mode="vfio"
 experimental=["a", "b"]
 enable_pprof = true
+name="virt-container"
 hypervisor_name = "qemu"
 agent_name = "agent0"

--- a/src/runtime-rs/Cargo.lock
+++ b/src/runtime-rs/Cargo.lock
@@ -1674,7 +1674,7 @@ dependencies = [
 "iana-time-zone-haiku",
 "js-sys",
 "wasm-bindgen",
- "windows",
+ "windows 0.48.0",
 ]

 [[package]]
@@ -1875,9 +1875,9 @@ checksum = "e2abad23fbc42b3700f2f279844dc832adb2b2eb069b2df918f455c4e18cc646"

 [[package]]
 name = "libc"
-version = "0.2.147"
+version = "0.2.153"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b4668fb0ea861c1df094127ac5f1da3409a82116a4ba74fca2e58ef927159bb3"
+checksum = "9c198f91728a82281a64e1f4f9eeb25d82cb32a5de251c6bd1b5154d63a8e7bd"

 [[package]]
 name = "libz-sys"
@@ -3899,9 +3899,9 @@ dependencies = [

 [[package]]
 name = "sysinfo"
-version = "0.29.11"
+version = "0.30.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cd727fc423c2060f6c92d9534cef765c65a6ed3f428a03d7def74a8c4348e666"
+checksum = "0c385888ef380a852a16209afc8cfad22795dd8873d69c9a14d2e2088f118d18"
 dependencies = [
 "cfg-if 1.0.0",
 "core-foundation-sys",
@@ -3909,7 +3909,7 @@ dependencies = [
 "ntapi",
 "once_cell",
 "rayon",
- "winapi",
+ "windows 0.52.0",
 ]

 [[package]]
@@ -4722,6 +4722,25 @@ dependencies = [
 "windows-targets 0.48.1",
 ]

+[[package]]
+name = "windows"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e48a53791691ab099e5e2ad123536d0fff50652600abaf43bbf952894110d0be"
+dependencies = [
+ "windows-core",
+ "windows-targets 0.52.0",
+]
+
+[[package]]
+name = "windows-core"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "33ab640c8d7e35bf8ba19b884ba838ceb4fba93a4e8c65a9059d08afcfc683d9"
+dependencies = [
+ "windows-targets 0.52.0",
+]
+
 [[package]]
 name = "windows-sys"
 version = "0.45.0"
--- a/Show More
+++ b/Show More
@@ -1 +1 @@
 .3.0
 .6.0