From aa1269db71c1ccd0b433d9d3e4547622a4df2fe0 Mon Sep 17 00:00:00 2001
From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
Date: Tue, 19 Nov 2024 16:11:19 +0100
Subject: [PATCH 1/5] packages/buildVerityMicroVM: init

This adds a Nix builder to build a micro VM image for direct Linux boot, specifically for the bare-metal Kata image where this is necessary to satisfy Contrast's security assumptions made on the SNP launch digest computation.
---
 .../by-name/buildVerityMicroVM/package.nix    | 59 +++++++++++++++++++
 1 file changed, 59 insertions(+)
 create mode 100644 packages/by-name/buildVerityMicroVM/package.nix

diff --git a/packages/by-name/buildVerityMicroVM/package.nix b/packages/by-name/buildVerityMicroVM/package.nix
new file mode 100644
index 0000000000..b56bd10a48
--- /dev/null
+++ b/packages/by-name/buildVerityMicroVM/package.nix
@@ -0,0 +1,59 @@
+# Copyright 2024 Edgeless Systems GmbH
+# SPDX-License-Identifier: AGPL-3.0-only
+
+# Builds a micro VM image (i.e. rootfs, kernel and kernel cmdline) from a NixOS
+# configuration. These components can then be booted in a microVM-fashion
+# with QEMU's direct Linux boot feature.
+# See: https://qemu-project.gitlab.io/qemu/system/linuxboot.html
+
+{
+  symlinkJoin,
+  lib,
+}:
+
+nixos-config:
+
+let
+  image = nixos-config.image.overrideAttrs (oldAttrs: {
+    passthru = oldAttrs.passthru // {
+      imageFileName = "${oldAttrs.pname}_${oldAttrs.version}.raw";
+    };
+  });
+in
+
+lib.throwIf
+  (lib.foldlAttrs (
+    acc: _: partConfig:
+    acc || (partConfig.repartConfig.Type == "esp")
+  ) false nixos-config.config.image.repart.partitions)
+  "MicroVM images should not contain an ESP."
+
+  symlinkJoin
+  {
+    pname = "microvm-image";
+    inherit (nixos-config.config.system.image) version;
+
+    paths = [
+      nixos-config.config.system.build.kernel
+      nixos-config.config.system.build.initialRamdisk
+      image
+    ];
+
+    passthru =
+      let
+        roothash = builtins.head (
+          lib.map (e: e.roothash) (builtins.fromJSON (builtins.readFile "${image}/repart-output.json"))
+        );
+      in
+      {
+        cmdline = lib.concatStringsSep " " (
+          nixos-config.config.boot.kernelParams
+          ++ [
+            "init=${nixos-config.config.system.build.toplevel}/init"
+            "roothash=${roothash}"
+          ]
+        );
+        inherit (image) imageFileName;
+        inherit (nixos-config.config.system.build) image kernel initialRamdisk;
+      };
+  }

From d90736ad70410ee223b17c4ed163a45a813bd63a Mon Sep 17 00:00:00 2001
From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
Date: Tue, 19 Nov 2024 16:13:21 +0100
Subject: [PATCH 2/5] packages/kata-kernel-uvm: add config options for
 bare-metal use

Using the Kata kernel with a baremetal NixOS image requires some additional config options to specify NixOS' sanity checks, so add them here.
---
 packages/by-name/kata/kata-kernel-uvm/package.nix | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/packages/by-name/kata/kata-kernel-uvm/package.nix b/packages/by-name/kata/kata-kernel-uvm/package.nix
index b3cc2cb024..79d0ba442f 100644
--- a/packages/by-name/kata/kata-kernel-uvm/package.nix
+++ b/packages/by-name/kata/kata-kernel-uvm/package.nix
@@ -27,8 +27,19 @@ let
       # 3. Disable module signing to make the build reproducable.
       substituteInPlace $config \
         --replace-fail 'CONFIG_INITRAMFS_SOURCE="initramfs.cpio.gz"' 'CONFIG_INITRAMFS_SOURCE=""' \
+        --replace-fail 'CONFIG_MODULE_SIG=y' 'CONFIG_MODULE_SIG=n' \
         --replace-fail '# CONFIG_DM_INIT is not set' 'CONFIG_DM_INIT=y' \
-        --replace-fail 'CONFIG_MODULE_SIG=y' 'CONFIG_MODULE_SIG=n'
+        --replace-fail '# CONFIG_DMIID is not set' 'CONFIG_DMIID=y' \
+        --replace-fail '# CONFIG_TMPFS_POSIX_ACL is not set' 'CONFIG_TMPFS_POSIX_ACL=y' \
+        --replace-fail '# CONFIG_TMPFS_XATTR is not set' 'CONFIG_TMPFS_XATTR=y' \
+        --replace-fail '# CONFIG_EFIVAR_FS is not set' 'CONFIG_EFIVAR_FS=y' \
+        --replace-fail '# CONFIG_RD_ZSTD is not set' 'CONFIG_RD_ZSTD=y' \
+        --replace-fail '# CONFIG_VFAT_FS is not se' 'CONFIG_VFAT_FS=y' \
+        --replace-fail '# CONFIG_NLS_CODEPAGE_437 is not set' 'CONFIG_NLS_CODEPAGE_437=y' \
+        --replace-fail '# CONFIG_NLS_ISO8859_1 is not set' 'CONFIG_NLS_ISO8859_1=y' \
+        --replace-fail '# CONFIG_ATA is not set' 'CONFIG_ATA=y'
+
+      echo "CONFIG_ATA_PIIX=y" >> $config
     '';
 
     dontBuild = true;

From 4ea3dc4d8e8c16eae0476e14ca3fcc14a1067e52 Mon Sep 17 00:00:00 2001
From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
Date: Tue, 19 Nov 2024 16:14:33 +0100
Subject: [PATCH 3/5] packages/kata-runtime: allow booting with image and
 initrd

Kata has a check to see if only image OR initrd are supplied, which is not needed for our use-case. So add a patch to remove that. This should probably be brought upstream in a usable fashion later on.
---
 ...ime-allow-initrd-AND-image-to-be-set.patch | 70 +++++++++++++++++++
 .../by-name/kata/kata-runtime/package.nix     |  4 ++
 2 files changed, 74 insertions(+)
 create mode 100644 packages/by-name/kata/kata-runtime/0017-runtime-allow-initrd-AND-image-to-be-set.patch

diff --git a/packages/by-name/kata/kata-runtime/0017-runtime-allow-initrd-AND-image-to-be-set.patch b/packages/by-name/kata/kata-runtime/0017-runtime-allow-initrd-AND-image-to-be-set.patch
new file mode 100644
index 0000000000..2226146eb0
--- /dev/null
+++ b/packages/by-name/kata/kata-runtime/0017-runtime-allow-initrd-AND-image-to-be-set.patch
@@ -0,0 +1,70 @@
+From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
+From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
+Date: Mon, 18 Nov 2024 12:41:40 +0100
+Subject: [PATCH] runtime: allow initrd AND image to be set
+
+Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>
+---
+ .../virtcontainers/hypervisor_config_darwin.go |  2 --
+ .../virtcontainers/hypervisor_config_linux.go  |  2 --
+ src/runtime/virtcontainers/qemu.go             | 18 +++---------------
+ 3 files changed, 3 insertions(+), 19 deletions(-)
+
+diff --git a/src/runtime/virtcontainers/hypervisor_config_darwin.go b/src/runtime/virtcontainers/hypervisor_config_darwin.go
+index 1225271a2a4c5d9340022c22ee6889171bc21b93..a3398bcf6fac68e272a4ca1de962e585c4cf4fae 100644
+--- a/src/runtime/virtcontainers/hypervisor_config_darwin.go
++++ b/src/runtime/virtcontainers/hypervisor_config_darwin.go
+@@ -21,8 +21,6 @@ func validateHypervisorConfig(conf *HypervisorConfig) error {
+ 
+ 	if conf.ImagePath == "" && conf.InitrdPath == "" {
+ 		return fmt.Errorf("Missing image and initrd path")
+-	} else if conf.ImagePath != "" && conf.InitrdPath != "" {
+-		return fmt.Errorf("Image and initrd path cannot be both set")
+ 	}
+ 
+ 	if conf.NumVCPUs == 0 {
+diff --git a/src/runtime/virtcontainers/hypervisor_config_linux.go b/src/runtime/virtcontainers/hypervisor_config_linux.go
+index f41cd22bd4ba96e5305ccb58e74c6d983b077974..8e1ca38eb620d58ffd4c83bbf4c666c1bc21efc3 100644
+--- a/src/runtime/virtcontainers/hypervisor_config_linux.go
++++ b/src/runtime/virtcontainers/hypervisor_config_linux.go
+@@ -28,8 +28,6 @@ func validateHypervisorConfig(conf *HypervisorConfig) error {
+ 		}
+ 	} else if conf.ImagePath == "" && conf.InitrdPath == "" {
+ 		return fmt.Errorf("Missing image and initrd path")
+-	} else if conf.ImagePath != "" && conf.InitrdPath != "" {
+-		return fmt.Errorf("Image and initrd path cannot be both set")
+ 	}
+ 
+ 	if err := conf.CheckTemplateConfig(); err != nil {
+diff --git a/src/runtime/virtcontainers/qemu.go b/src/runtime/virtcontainers/qemu.go
+index 2c6311c067935a2c5da0a1018420bab684b670e8..3f4e143349e7467e530b5e3593f65134f9a5798c 100644
+--- a/src/runtime/virtcontainers/qemu.go
++++ b/src/runtime/virtcontainers/qemu.go
+@@ -415,24 +415,12 @@ func (q *qemu) buildDevices(ctx context.Context, kernelPath string) ([]govmmQemu
+ 		return nil, nil, nil, err
+ 	}
+ 
+-	assetPath, assetType, err := q.config.ImageOrInitrdAssetPath()
+-	if err != nil {
+-		return nil, nil, nil, err
+-	}
+-
+-	if assetType == types.ImageAsset {
+-		devices, err = q.arch.appendImage(ctx, devices, assetPath)
++	devices, err = q.arch.appendImage(ctx, devices, q.config.ImagePath)
+ 		if err != nil {
+ 			return nil, nil, nil, err
+ 		}
+-	} else if assetType == types.InitrdAsset {
+-		// InitrdAsset, need to set kernel initrd path
+-		kernel.InitrdPath = assetPath
+-	} else if assetType == types.SecureBootAsset {
+-		// SecureBootAsset, no need to set image or initrd path
+-		q.Logger().Info("For IBM Z Secure Execution, initrd path should not be set")
+-		kernel.InitrdPath = ""
+-	}
++
++	kernel.InitrdPath = q.config.InitrdPath
+ 
+ 	if q.config.IOMMU {
+ 		devices, err = q.arch.appendIOMMU(devices)
diff --git a/packages/by-name/kata/kata-runtime/package.nix b/packages/by-name/kata/kata-runtime/package.nix
index 087d0aa278..a3e7bd5a4d 100644
--- a/packages/by-name/kata/kata-runtime/package.nix
+++ b/packages/by-name/kata/kata-runtime/package.nix
@@ -93,6 +93,10 @@ buildGoModule rec {
       ./0014-kata-sys-util-remove-obsolete-cgroups-dependency.patch
       ./0015-kata-sys-util-move-json-parsing-to-protocols-crate.patch
       ./0016-protocols-only-build-RLimit-impls-on-Linux.patch
+
+      # Disable a check in Kata that prevents to set both image and initrd.
+      # For us, there's no practical reason not to do so.
+      ./0017-runtime-allow-initrd-AND-image-to-be-set.patch
     ];
   };
 

From 6cf5c05ff2bff46a30b670b8072b4b9530c66ee3 Mon Sep 17 00:00:00 2001
From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
Date: Tue, 19 Nov 2024 16:15:57 +0100
Subject: [PATCH 4/5] packages/boot-microvm: init

This adds a little helper script to boot a Micro VM, as we build them for Kata bare-metal, via QEMU.
---
 packages/by-name/boot-microvm/package.nix | 36 +++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 packages/by-name/boot-microvm/package.nix

diff --git a/packages/by-name/boot-microvm/package.nix b/packages/by-name/boot-microvm/package.nix
new file mode 100644
index 0000000000..416f82a26b
--- /dev/null
+++ b/packages/by-name/boot-microvm/package.nix
@@ -0,0 +1,36 @@
+# Copyright 2024 Edgeless Systems GmbH
+# SPDX-License-Identifier: AGPL-3.0-only
+
+{
+  writeShellApplication,
+  qemu,
+  OVMF,
+}:
+
+# Usage example:
+# outPath=$(nix build .#kata.kata-image --print-out-paths); nix run .#boot-microvm -- "${outPath}/bzImage" "${outPath}/initrd" "${outPath}/image-podvm-gpu_1-rc1.raw" "$(nix eval --raw .#kata.kata-image.cmdline)"
+
+writeShellApplication {
+  name = "boot-microvm";
+  runtimeInputs = [ qemu ];
+  text = ''
+    if [ $# -ne 4 ]; then
+      echo "Usage: $0 <kernel> <initrd> <rootfs> <cmdline>";
+      exit 1;
+    fi
+
+    tmpFile=$(mktemp)
+    cp "$3" "$tmpFile"
+
+    qemu-system-x86_64 \
+      -enable-kvm \
+      -m 3G \
+      -nographic \
+      -drive if=pflash,format=raw,readonly=on,file=${OVMF.firmware} \
+      -drive if=pflash,format=raw,readonly=on,file=${OVMF.variables} \
+      -kernel "$1" \
+      -initrd "$2" \
+      -append "$4" \
+      -drive "if=virtio,format=raw,file=$tmpFile" 
+  '';
+}

From 7dc21e124903fc6136d2952cfd33b9b7d525d840 Mon Sep 17 00:00:00 2001
From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
Date: Tue, 19 Nov 2024 16:17:16 +0100
Subject: [PATCH 5/5] Add NixOS image for bare-metal Kata

This switches the image used in our bare-metal Kata uses (e.g. non-AKS and non-peerpods) to a NixOS image that we build in-tree as a MicroVM image (e.g. separated kernel, initrd, cmdline and rootfs).
---
 docs/docs/features-limitations.md             |   7 +
 .../constants/configuration-qemu-tdx.toml     |   3 +
 nodeinstaller/internal/constants/constants.go |  21 +-
 packages/by-name/OVMF-TDX/package.nix         |   2 +-
 packages/by-name/image-podvm/package.nix      |   1 +
 .../contrast-node-installer-image/package.nix |  14 +-
 .../by-name/kata/kata-image/buildimage.sh     | 121 ----
 .../kata/kata-image/package-index.json        | 562 ------------------
 packages/by-name/kata/kata-image/package.nix  | 252 +-------
 .../by-name/kata/kata-kernel-uvm/package.nix  |   1 +
 .../by-name/kata/kata-runtime/package.nix     |  12 +
 .../kata/snp-launch-digest/package.nix        |  28 +-
 .../kata/tdx-launch-digests/package.nix       |  28 +-
 packages/by-name/mkNixosConfig/package.nix    |   6 +-
 ...hw-x86-load-initrd-to-static-address.patch |  87 +++
 packages/by-name/qemu-tdx-static/package.nix  |   2 +
 packages/nixos/azure.nix                      |   2 +
 packages/nixos/debug.nix                      |  11 +-
 packages/nixos/image.nix                      | 116 ++--
 packages/nixos/kata.nix                       | 158 ++---
 packages/nixos/peerpods.nix                   | 103 ++++
 packages/nixos/system.nix                     |  12 +-
 tools/tdx-measure/main.go                     |  25 +-
 tools/tdx-measure/rtmr/rtmr.go                |  42 +-
 24 files changed, 514 insertions(+), 1102 deletions(-)
 delete mode 100644 packages/by-name/kata/kata-image/buildimage.sh
 delete mode 100644 packages/by-name/kata/kata-image/package-index.json
 create mode 100644 packages/by-name/qemu-tdx-static/0004-hw-x86-load-initrd-to-static-address.patch
 create mode 100644 packages/nixos/peerpods.nix

diff --git a/docs/docs/features-limitations.md b/docs/docs/features-limitations.md
index 386b0bc0d4..69a1c028ef 100644
--- a/docs/docs/features-limitations.md
+++ b/docs/docs/features-limitations.md
@@ -34,3 +34,10 @@ Currently, this requires inspecting the iptables rules on startup or terminating
 The Contrast Coordinator is a singleton and can't be scaled to more than one instance.
 When this instance's pod is restarted, for example for node maintenance, it needs to be recovered manually.
 In a future release, we plan to support distributed Coordinator instances that can recover automatically.
+
+## Overriding Kata configuration
+
+Kata Containers supports [overriding certain configuration values via Kubernetes annotations](https://github.com/kata-containers/kata-containers/blob/b4da4b5e3b9b21048af9333b071235a57a3e9493/docs/how-to/how-to-set-sandbox-config-kata.md).
+
+It needs to be noted that setting these values is unsupported, and doing so may lead to unexpected
+behaviour, as Contrast isn't tested against all possible configuration combinations.
diff --git a/nodeinstaller/internal/constants/configuration-qemu-tdx.toml b/nodeinstaller/internal/constants/configuration-qemu-tdx.toml
index c37fd9b4ed..7dd1b0b590 100644
--- a/nodeinstaller/internal/constants/configuration-qemu-tdx.toml
+++ b/nodeinstaller/internal/constants/configuration-qemu-tdx.toml
@@ -18,6 +18,9 @@ cpu_features="-vmx-rdseed-exit,pmu=off"
 default_vcpus = 1
 default_maxvcpus = 0
 default_bridges = 1
+# On TDX, when lowering this, the patch:
+# packages/by-name/qemu-tdx-static/0004-hw-x86-load-initrd-to-static-address.patch
+# needs to be updated accordingly.
 default_memory = 2048
 default_maxmemory = 0
 disable_block_device_use = false
diff --git a/nodeinstaller/internal/constants/constants.go b/nodeinstaller/internal/constants/constants.go
index 89628d918d..be75b60c20 100644
--- a/nodeinstaller/internal/constants/constants.go
+++ b/nodeinstaller/internal/constants/constants.go
@@ -64,17 +64,17 @@ func KataRuntimeConfig(baseDir string, platform platforms.Platform, qemuExtraKer
 		config.Hypervisor["qemu"]["path"] = filepath.Join(baseDir, "tdx", "bin", "qemu-system-x86_64")
 		config.Hypervisor["qemu"]["firmware"] = filepath.Join(baseDir, "tdx", "share", "OVMF.fd")
 		config.Hypervisor["qemu"]["image"] = filepath.Join(baseDir, "share", "kata-containers.img")
-		config.Hypervisor["qemu"]["kernel"] = filepath.Join(baseDir, "share", "kata-kernel")
 		config.Hypervisor["qemu"]["valid_hypervisor_paths"] = []string{filepath.Join(baseDir, "tdx", "bin", "qemu-system-x86_64")}
 		config.Hypervisor["qemu"]["block_device_aio"] = "threads"
 		config.Hypervisor["qemu"]["shared_fs"] = "none"
-		kernelParams := qemuExtraKernelParams
+		config.Hypervisor["qemu"]["initrd"] = filepath.Join(baseDir, "share", "kata-initrd.zst")
+		config.Hypervisor["qemu"]["kernel"] = filepath.Join(baseDir, "share", "kata-kernel")
+		// Replace the kernel params entirely (and don't append) since that's
+		// also what we do when calculating the launch measurement.
+		config.Hypervisor["qemu"]["kernel_params"] = qemuExtraKernelParams
 		if debug {
 			config.Hypervisor["qemu"]["enable_debug"] = true
 		}
-		// Replace the kernel params entirely (and don't append) since that's
-		// also what we do when calculating the launch measurement.
-		config.Hypervisor["qemu"]["kernel_params"] = kernelParams
 	case platforms.K3sQEMUSNP:
 		if err := toml.Unmarshal([]byte(kataBareMetalQEMUSNPBaseConfig), &config); err != nil {
 			return nil, fmt.Errorf("failed to unmarshal kata runtime configuration: %w", err)
@@ -82,19 +82,18 @@ func KataRuntimeConfig(baseDir string, platform platforms.Platform, qemuExtraKer
 		config.Hypervisor["qemu"]["path"] = filepath.Join(baseDir, "snp", "bin", "qemu-system-x86_64")
 		config.Hypervisor["qemu"]["firmware"] = filepath.Join(baseDir, "snp", "share", "OVMF.fd")
 		config.Hypervisor["qemu"]["image"] = filepath.Join(baseDir, "share", "kata-containers.img")
-		config.Hypervisor["qemu"]["kernel"] = filepath.Join(baseDir, "share", "kata-kernel")
-		delete(config.Hypervisor["qemu"], "initrd")
 		config.Hypervisor["qemu"]["block_device_aio"] = "threads"
 		config.Hypervisor["qemu"]["shared_fs"] = "none"
 		config.Hypervisor["qemu"]["valid_hypervisor_paths"] = []string{filepath.Join(baseDir, "snp", "bin", "qemu-system-x86_64")}
 		config.Hypervisor["qemu"]["rootfs_type"] = "erofs"
-		kernelParams := qemuExtraKernelParams
+		config.Hypervisor["qemu"]["initrd"] = filepath.Join(baseDir, "share", "kata-initrd.zst")
+		config.Hypervisor["qemu"]["kernel"] = filepath.Join(baseDir, "share", "kata-kernel")
+		// Replace the kernel params entirely (and don't append) since that's
+		// also what we do when calculating the launch measurement.
+		config.Hypervisor["qemu"]["kernel_params"] = qemuExtraKernelParams
 		if debug {
 			config.Hypervisor["qemu"]["enable_debug"] = true
 		}
-		// Replace the kernel params entirely (and don't append) since that's
-		// also what we do when calculating the launch measurement.
-		config.Hypervisor["qemu"]["kernel_params"] = kernelParams
 	default:
 		return nil, fmt.Errorf("unsupported platform: %s", platform)
 	}
diff --git a/packages/by-name/OVMF-TDX/package.nix b/packages/by-name/OVMF-TDX/package.nix
index be4941eed1..03a6930bb6 100644
--- a/packages/by-name/OVMF-TDX/package.nix
+++ b/packages/by-name/OVMF-TDX/package.nix
@@ -9,7 +9,7 @@
   debug ? false,
 }:
 
-edk2.mkDerivation "OvmfPkg/IntelTdx/IntelTdxX64.dsc" rec {
+edk2.mkDerivation "OvmfPkg/IntelTdx/IntelTdxX64.dsc" {
   name = "OVMF-TDX";
 
   buildFlags = lib.optionals debug [ "-D DEBUG_ON_SERIAL_PORT=TRUE" ];
diff --git a/packages/by-name/image-podvm/package.nix b/packages/by-name/image-podvm/package.nix
index 26729aa10f..bf97f45e3d 100644
--- a/packages/by-name/image-podvm/package.nix
+++ b/packages/by-name/image-podvm/package.nix
@@ -15,5 +15,6 @@ buildVerityUKI (mkNixosConfig {
     debug.enable = withDebug;
     gpu.enable = withGPU;
     azure.enable = withCSP == "azure";
+    peerpods.enable = true;
   };
 })
diff --git a/packages/by-name/kata/contrast-node-installer-image/package.nix b/packages/by-name/kata/contrast-node-installer-image/package.nix
index be31bc4d8b..d0e5c5c22b 100644
--- a/packages/by-name/kata/contrast-node-installer-image/package.nix
+++ b/packages/by-name/kata/contrast-node-installer-image/package.nix
@@ -47,6 +47,10 @@ let
               url = "file:///opt/edgeless/share/kata-kernel";
               path = "/opt/edgeless/@@runtimeName@@/share/kata-kernel";
             }
+            {
+              url = "file:///opt/edgeless/share/kata-initrd.zst";
+              path = "/opt/edgeless/@@runtimeName@@/share/kata-initrd.zst";
+            }
             {
               url = "file:///opt/edgeless/snp/bin/qemu-system-x86_64";
               path = "/opt/edgeless/@@runtimeName@@/snp/bin/qemu-system-x86_64";
@@ -106,7 +110,7 @@ let
             }
           ];
           inherit debugRuntime;
-          qemuExtraKernelParams = kata.snp-launch-digest.dmVerityArgs;
+          qemuExtraKernelParams = kata.kata-image.cmdline;
         };
         destination = "/config/contrast-node-install.json";
       }
@@ -116,13 +120,17 @@ let
   kata-container-img = ociLayerTar {
     files = [
       {
-        source = kata.kata-image;
+        source = "${kata.kata-image.image}/${kata.kata-image.imageFileName}";
         destination = "/opt/edgeless/share/kata-containers.img";
       }
       {
-        source = "${kata.kata-kernel-uvm}/bzImage";
+        source = "${kata.kata-image.kernel}/bzImage";
         destination = "/opt/edgeless/share/kata-kernel";
       }
+      {
+        source = "${kata.kata-image.initialRamdisk}/initrd";
+        destination = "/opt/edgeless/share/kata-initrd.zst";
+      }
     ];
   };
 
diff --git a/packages/by-name/kata/kata-image/buildimage.sh b/packages/by-name/kata/kata-image/buildimage.sh
deleted file mode 100644
index 18fe86df5a..0000000000
--- a/packages/by-name/kata/kata-image/buildimage.sh
+++ /dev/null
@@ -1,121 +0,0 @@
-#!/usr/bin/env bash
-# Copyright 2024 Edgeless Systems GmbH
-# SPDX-License-Identifier: AGPL-3.0-only
-
-set -euo pipefail
-shopt -s inherit_errexit
-
-# Image layout:
-#
-#   +---------------------------------+-------------------+-------------------------+
-#   | 512B DOS MBR (padded to 1 MiB)  | p0    rootfs      | p1      hashtree        |
-#   +---------------------------------+-------------------+-------------------------+
-#   |                                 |                   |                         |
-#   0                                 1MiB                1MiB + rootfs_size        1MiB + rootfs_size + hashtree_size
-
-# rootfs: erofs filesystem mounted at / (read-only)
-# hashtree: dm-verity hashtree without superblock
-
-readonly MIB=1048576
-
-in=$1
-out=$2
-tmpdir=$(mktemp -d)
-trap 'rm -rf $tmpdir' EXIT
-rootfs=$tmpdir/01_rootfs
-hashtree=$tmpdir/02_verity_hashtree
-dm_verity_file=$out/dm_verity.txt
-roothash=$out/roothash
-raw=$out/raw.img
-uuid=c1b9d5a2-f162-11cf-9ece-0020afc76f16
-salt=0102030405060708090a0b0c0d0e0f
-
-if [ -z "${SOURCE_DATE_EPOCH}" ]; then
-  echo "SOURCE_DATE_EPOCH is not set" >&2
-  exit 1
-fi
-
-mkdir -p "$out"
-
-# create the rootfs and pad it to 1MiB
-mkfs.erofs \
-  -z lz4 \
-  -b 4096 \
-  -T "$SOURCE_DATE_EPOCH" \
-  -U "$uuid" \
-  --tar=f \
-  "$rootfs" \
-  "$in"
-truncate -s '%1MiB' "$rootfs"
-
-# create the dm-verity hashtree
-verity_out=$(
-  veritysetup format \
-    "$rootfs" \
-    "$hashtree" \
-    --data-block-size 4096 \
-    --hash-block-size 4096 \
-    --no-superblock \
-    --uuid "$uuid" \
-    --salt "$salt" | tee "$dm_verity_file"
-)
-# pad the hashtree to multiple of 1MiB
-truncate -s '%1MiB' "$hashtree"
-# extract dm-verity parameters from text output to individual files
-sed -i 1d "$dm_verity_file"
-root_hash=$(echo "$verity_out" | grep -oP 'Root hash:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$root_hash" >"$roothash"
-hash_type=$(echo "$verity_out" | grep -oP 'Hash type:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$hash_type" >"$out/hash_type"
-data_blocks=$(echo "$verity_out" | grep -oP 'Data blocks:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$data_blocks" >"$out/data_blocks"
-data_block_size=$(echo "$verity_out" | grep -oP 'Data block size:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$data_block_size" >"$out/data_block_size"
-hash_blocks=$(echo "$verity_out" | grep -oP 'Hash blocks:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$hash_blocks" >"$out/hash_blocks"
-hash_block_size=$(echo "$verity_out" | grep -oP 'Hash block size:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$hash_block_size" >"$out/hash_block_size"
-hash_algorithm=$(echo "$verity_out" | grep -oP 'Hash algorithm:\s+\K\w+' | tr -d "[:space:]")
-echo -n "$hash_algorithm" >"$out/hash_algorithm"
-echo -n "$salt" >"$out/salt"
-
-rootfs_size_mib=$(($(stat -c %s "$rootfs") / "$MIB"))
-# full image size is dos header + rootfs + hashtree
-hashtree_size_bytes=$(stat -c %s "$hashtree")
-hashtree_size_mib=$(($(stat -c %s "$hashtree") / "$MIB"))
-# img_size is the size of the full image in bytes
-# DOS MBR (padded to 1MiB) + rootfs + hashtree
-img_size_bytes=$(("$MIB" + "$rootfs_size_mib" * "$MIB" + "$hashtree_size_bytes"))
-
-# Where the rootfs starts in MiB
-readonly rootfs_start=1
-# hash_start is the start of the hashtree in MiB
-hash_start=$((rootfs_start + rootfs_size_mib))
-hash_end=$((hash_start + hashtree_size_mib))
-
-rs=$(printf "%4dMiB" "$rootfs_start")
-hs=$(printf "%4dMiB" "$hash_start")
-he=$(printf "%4dMiB" "$hash_end")
-cat <<EOF
-Image layout:
-
-  +---------------------------------+-------------------+-------------------------+
-  | 512B DOS MBR (padded to 1 MiB)  | p0    rootfs      | p1      hashtree        |
-  +---------------------------------+-------------------+-------------------------+
-  |                                 |                   |                         |
-  0                             $rs             $hs                   $he
-EOF
-
-# create the raw image
-truncate -s "$img_size_bytes" "$raw"
-
-# create the partition table
-parted -s -a optimal "${raw}" -- \
-  mklabel msdos \
-  mkpart primary ext4 ${rootfs_start}MiB ${hash_start}MiB \
-  mkpart primary ext4 ${hash_start}MiB '100%'
-sfdisk --disk-id "${raw}" 0
-
-# write the rootfs and hashtree to the raw image
-dd if="$rootfs" of="${raw}" bs=1MiB seek=${rootfs_start} conv=notrunc,fsync
-dd if="$hashtree" of="${raw}" bs=1MiB seek=${hash_start} conv=notrunc,fsync
diff --git a/packages/by-name/kata/kata-image/package-index.json b/packages/by-name/kata/kata-image/package-index.json
deleted file mode 100644
index 682906f84d..0000000000
--- a/packages/by-name/kata/kata-image/package-index.json
+++ /dev/null
@@ -1,562 +0,0 @@
-[
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/a/audit-libs-3.0.6-8.cm2.x86_64.rpm",
-    "hash": "sha256-VgGfQp0tWzNLEgIm1cGDdKy9NH2GG7zjeAUukokpD2k="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bash-5.1.8-4.cm2.x86_64.rpm",
-    "hash": "sha256-ThaBW0Ncj45PBFetz3YeQdcFV3qQkhLUPnjc0iERN0s="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bc-1.07.1-4.cm2.x86_64.rpm",
-    "hash": "sha256-V3voScF7Xe831YpKhtAQkijMPR7terd8s+9v7Oq9Kk0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bind-libs-9.16.50-1.cm2.x86_64.rpm",
-    "hash": "sha256-yPoDwzXXy5Q/5P/s5fnq/cuChH1hScP/8cbMrGiu12s="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bind-license-9.16.50-1.cm2.noarch.rpm",
-    "hash": "sha256-VcIZM1uRrKm/+vzY4YsCOl2B3T18Li7EUEKDIPQrx2E="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bind-utils-9.16.50-1.cm2.x86_64.rpm",
-    "hash": "sha256-5wPM7kasKSjl/PKeRtpwNiETjZtrlYXlNqjRQ7jssqE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bridge-utils-1.7.1-2.cm2.x86_64.rpm",
-    "hash": "sha256-ErLVq6o7vhPBzkSbXl18h5IAMBOOqio5C8GTrbd54hA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bzip2-1.0.8-1.cm2.x86_64.rpm",
-    "hash": "sha256-GPa2ZcpiiedP5TpfBNwVpvNlfoEiYuxQO2PYt0CrgsI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/b/bzip2-libs-1.0.8-1.cm2.x86_64.rpm",
-    "hash": "sha256-xy3NTfx4doQNZyzw2flp7ObWz0HkpGXySQ54DAYV8H8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/ca-certificates-2.0.0-18.cm2.noarch.rpm",
-    "hash": "sha256-3TvuEZmvV8e3zIRidySAmN+S9MGxMkkL4KXZIj4K9Cs="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/ca-certificates-base-2.0.0-18.cm2.noarch.rpm",
-    "hash": "sha256-s+5ZTaQjTr5qs9ewWPPsFCaw77EX9/sSe4mOK50ijHU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/ca-certificates-shared-2.0.0-18.cm2.noarch.rpm",
-    "hash": "sha256-dsrWaCbMCuboHv6rFu67DtCdJXvYhZ4fsqurFelHZos="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/ca-certificates-tools-2.0.0-18.cm2.noarch.rpm",
-    "hash": "sha256-WaoZIgiht1Ml4sdox7HcN8ToPeGHEYhD2HzzAksRPmg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/chkconfig-1.20-4.cm2.x86_64.rpm",
-    "hash": "sha256-3tHthHWZa5BYK8OoeQ2XNjew6t6yONdU6f5dVeP8v3Y="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/chrony-4.1-3.cm2.x86_64.rpm",
-    "hash": "sha256-WH8M2Arqc/gLJSfJFCo0grNwOcseqa348kNt7vvi9Rk="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cifs-utils-6.14-2.cm2.x86_64.rpm",
-    "hash": "sha256-2J+ybspZFthyKq9jnXRKbEPc8A07AuX7XbiABKHc1bY="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/core-packages-base-image-2.0-8.cm2.x86_64.rpm",
-    "hash": "sha256-g8oIsNCIihNNBbs41I/8614jTIQtayn8NJchPHX5yeY="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/core-packages-container-2.0-8.cm2.x86_64.rpm",
-    "hash": "sha256-AvGiZXDeH1i0vT+NaaVJowEfhNv+CNBc4YfHFPs16f0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/coreutils-8.32-7.cm2.x86_64.rpm",
-    "hash": "sha256-CJjEDYi1s1FSX80g+zMZu7+PVpDdoJcR1DiTYMBOxfY="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cpio-2.13-5.cm2.x86_64.rpm",
-    "hash": "sha256-BowsmhHh2jZIAeXYgLHR6N23TDkREBpvZKT1biSoqpM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cracklib-2.9.7-5.cm2.x86_64.rpm",
-    "hash": "sha256-O2orWkJmbN3fk9sph7i+H3X2KvqwR2Dk/TBpi/d8c1o="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cracklib-dicts-2.9.7-5.cm2.x86_64.rpm",
-    "hash": "sha256-uZMuKcOR0D6SbM7VgYm+fcuBv5LILcvfZuxQHzGp0So="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cryptsetup-2.4.3-4.cm2.x86_64.rpm",
-    "hash": "sha256-FtWBVFh7I/tmGqkh6tqFtb3kmXUxOd6lcwaU884SMu8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cryptsetup-libs-2.4.3-4.cm2.x86_64.rpm",
-    "hash": "sha256-pco7TmLwLTuWKT87qTTAnin5IeoHAiXzbK3p6nJ0BKI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/curl-8.8.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-oLZxugZQP3waugcYuYOpXN1wZj+MV79Xppq/VDVKobI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/curl-libs-8.8.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-6J0kkncYa8YMXqdBHb7Ed6a15FL1fbmTaRAa9nBRrxE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/c/cyrus-sasl-lib-2.1.28-4.cm2.x86_64.rpm",
-    "hash": "sha256-jsX83c9gctllHEk2hOa8WIf1sLUXd2s4sRKc6dUmPAg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/d/dbus-1.15.6-1.cm2.x86_64.rpm",
-    "hash": "sha256-wckUbLIkZlarlQBtxI+vZoHPGAdG4dd0cHuDem+b+Q8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/d/device-mapper-2.03.15-3.cm2.x86_64.rpm",
-    "hash": "sha256-5Rg8i20MFovplvtH9hUBMkmiD/hLqVTOjUgdneDvuDI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/d/device-mapper-event-2.03.15-3.cm2.x86_64.rpm",
-    "hash": "sha256-oPegONloxOxPMYmX4IbU4P4wSVdOC+FcSIWpPB7VQkw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/d/device-mapper-event-libs-2.03.15-3.cm2.x86_64.rpm",
-    "hash": "sha256-hgnvTrKRJcVksrHPHU2dIoSATnkLj+3PpRrwjwhk7RU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/d/device-mapper-libs-2.03.15-3.cm2.x86_64.rpm",
-    "hash": "sha256-Jyjy2IfuKM8ImBytElAN+vl79Uqdc79YTL2XZdIQA48="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/e/e2fsprogs-1.46.5-3.cm2.x86_64.rpm",
-    "hash": "sha256-xq9SvSg7M6aeg/vmEooNAd9OEJ1sYr43y43aLU9klAs="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/e/e2fsprogs-libs-1.46.5-3.cm2.x86_64.rpm",
-    "hash": "sha256-V4exraE0dMe3ddS8PVtzwsP4W3FsZBk//866Vcjv3As="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/e/elfutils-libelf-0.186-2.cm2.x86_64.rpm",
-    "hash": "sha256-pRI7/zb7FDLFSiKHWqkm+ijy4YBk928n6l7D7ydkpLw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/e/expat-2.6.3-2.cm2.x86_64.rpm",
-    "hash": "sha256-B6mhDr9PQSQnuRuNYfM3jQtNk3V7VRjMUYqn3iKrjhs="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/e/expat-libs-2.6.3-2.cm2.x86_64.rpm",
-    "hash": "sha256-n5K0N9UAPmPRQ5dIywnQ3IZPiLiRz57i2s0ImiYdnm4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/f/file-5.40-2.cm2.x86_64.rpm",
-    "hash": "sha256-bcMQVAkvoY4aRazaQTNFLSf+eofMbYiZZTOIBi1xIo8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/f/file-libs-5.40-2.cm2.x86_64.rpm",
-    "hash": "sha256-d7J5iFwn/Sorzbl49E9u3n0z/Iw9dTzCdrQLYjzCLpU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/f/filesystem-1.1-20.cm2.x86_64.rpm",
-    "hash": "sha256-n6iNUlfrX2WRcQGA+fglFeOt44fG+89y4oz+v/rgHuI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/f/findutils-4.8.0-5.cm2.x86_64.rpm",
-    "hash": "sha256-BO6S/wrhyFjXtSB/2kvIv/oNBKz7sYJzOmcjy9sJttQ="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/gdbm-1.21-1.cm2.x86_64.rpm",
-    "hash": "sha256-EabAF/yQigDCXyHjMz+0krDq4M10JHtMQqdNBWez5nM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/glib-2.71.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-jGz+uFSfcjMsIyL9wbSnzSVM3w3ofStrnm/BEQ/gRPs="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/glibc-2.35-7.cm2.x86_64.rpm",
-    "hash": "sha256-ihRSOw4jeE9n25nIXfpPZJHBkU9oQiDmokr0fo+ro0g="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/gmp-6.2.1-4.cm2.x86_64.rpm",
-    "hash": "sha256-bnJ3D11SQi5WfnpuiSQFnLw8ssQ22ErcefG4IwdkS3o="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/gnupg2-2.4.0-2.cm2.x86_64.rpm",
-    "hash": "sha256-A3OX8UfloyDEgjPVcGN8xOWTrFLQqgOTChoL3HbX3cM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/gpgme-1.16.0-2.cm2.x86_64.rpm",
-    "hash": "sha256-APEWBTJJoPn+qG8E3aNL/v88pY0B0+6zxRcnm57WTO8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/grep-3.7-2.cm2.x86_64.rpm",
-    "hash": "sha256-TwjKeKFBJYR4zhuMw1Ltk/n/uihu0mzNI8duayX6T5I="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/g/gzip-1.12-2.cm2.x86_64.rpm",
-    "hash": "sha256-yAGT2o3W9f4E1GyHoV8utyIweETf6L3fivCJuBczOcU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/i/iana-etc-20211115-2.cm2.noarch.rpm",
-    "hash": "sha256-AGTXuDYJCG/kABzV2oUzc7kgIn6PcmBbAIGAsJARzN0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/i/iproute-5.15.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-++U8bP0w46rRd6hw+Ggsu7kMrN+6AmsUy4ysaiIrqmM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/i/iptables-1.8.7-4.cm2.x86_64.rpm",
-    "hash": "sha256-2/DeCWzVM43YazbA5DbtfNjPstwVnFf/Irmp4ZZUp44="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/i/iputils-20211215-2.cm2.x86_64.rpm",
-    "hash": "sha256-DDNR+lKZhgFR8oDeSXkKWE52zyOH9YTPtYJMZkG+02Q="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/i/irqbalance-1.8.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-4rZVtmCSQEntJDneWXIUM3p3AGnZDHhja+t6UN8Q/P4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/j/json-c-0.15-2.cm2.x86_64.rpm",
-    "hash": "sha256-dsOH9HRz8wMBsq2aDLHiYjI7dvvQYatobmEAN0WGId8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/k/kata-packages-uvm-1.0.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-eNxQ4J00TYohfg5izZknLpQfxmb9uZ/71WjYd46RxpY="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/k/kata-packages-uvm-coco-1.0.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-mHJPnYEBVxiEeoBiJw/4bDNnVqp9g8WVwq7iL08RNQk="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/k/keyutils-1.6.3-1.cm2.x86_64.rpm",
-    "hash": "sha256-mEWiqQ+YdK3ZHhf7aRWBUYRgjs98GTI4Q1vZPapbzkA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/k/kmod-29-2.cm2.x86_64.rpm",
-    "hash": "sha256-2PFXCoxuz9v+SuQn5+opDbP3pNKuKZoH4wEA9Oy9Pxw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/k/krb5-1.19.4-3.cm2.x86_64.rpm",
-    "hash": "sha256-lRRwDgW2nPba1jYgOEfr2mUYlmA2etdSvECzrW9lyUc="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libaio-0.3.112-4.cm2.x86_64.rpm",
-    "hash": "sha256-GubbB8lO6NJKURIn8hzJAWsshmR52aQniybY3alvO5k="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libarchive-3.6.1-4.cm2.x86_64.rpm",
-    "hash": "sha256-/P2GzBpY530yoHPHkihVCoGEMJvRYJXTFGxd6o870Os="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libassuan-2.5.5-2.cm2.x86_64.rpm",
-    "hash": "sha256-Vroe0tFtlgvGDstpMUYcSTKugkAbkV2VttURBVUBluw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libcap-2.60-2.cm2.x86_64.rpm",
-    "hash": "sha256-vh8o1sFZ0pNCx75g+1aeAvCH6fZib4cpu+0XATlK3wA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libcap-ng-0.8.2-2.cm2.x86_64.rpm",
-    "hash": "sha256-hbj5/nlIlftez1UU/h4//DEgELfz7HbpQ5qiLLcFG8I="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libdb-5.3.28-7.cm2.x86_64.rpm",
-    "hash": "sha256-8SHWMLtJtCXtbo44BFXlPIPTPmsm4zcnayKXd5FOo3c="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libedit-3.1.20210910-1.cm2.x86_64.rpm",
-    "hash": "sha256-/lksTEQ9fSb/DFK5cEEfQ0EYq6gE6afKZ7akINiTZwE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libffi-3.4.2-3.cm2.x86_64.rpm",
-    "hash": "sha256-g0VUg7rGiuGmbqImqw8tQOJAzjhLHWLp1b9BcPWug5I="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libgcc-11.2.0-8.cm2.x86_64.rpm",
-    "hash": "sha256-A1sdPjobGh94QTejGUgXTGIxGYxAu4ZYTYK5hS4B+/4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libgcrypt-1.10.3-1.cm2.x86_64.rpm",
-    "hash": "sha256-RHHtKFEeb/KmSw5wkxQAXry3IuoKvzodhWqCoEC/sIw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libgpg-error-1.46-1.cm2.x86_64.rpm",
-    "hash": "sha256-JpDOmG/y3I4mTpVcESf+DOmePuSkTyfmpSC9mZE85KU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libksba-1.6.3-1.cm2.x86_64.rpm",
-    "hash": "sha256-swan1Euq7DG9z5SzyNdodfyJqKWoUQIH9q8KCNSVJ7k="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libmnl-1.0.4-6.cm2.x86_64.rpm",
-    "hash": "sha256-qdDvZd5IjjmRNqv1ORGbp7vxqC6weBtUX99kL+xERK0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libpkgconf-1.8.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-MZi/sMPe+DFHws2FGAsDNLp6K4Uz+I7z9vpz9sm5UXQ="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libpwquality-1.4.4-1.cm2.x86_64.rpm",
-    "hash": "sha256-hL5GcugM6Ea8efMo8ncLx8Ip7iRmHDh6OXoS/kpR2KU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libseccomp-2.5.3-1.cm2.x86_64.rpm",
-    "hash": "sha256-WF0KXWdcPw64VxTjahj1VIas9mV8dy7+mfLUXaaDyq8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libselinux-3.2-1.cm2.x86_64.rpm",
-    "hash": "sha256-MUZb/jB2sek6KcmRZwapCznY9H2E5XAUuPR5kYgtkyA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libsemanage-3.2-2.cm2.x86_64.rpm",
-    "hash": "sha256-UR+h2Y3N2FRMrV+8kfxx9Lubp37noGyewpI+hMgiDiM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libsepol-3.2-2.cm2.x86_64.rpm",
-    "hash": "sha256-iweA41BQuSYGkwEE7vD9GvUDSFnk1Hb+C2VZc/XsiCw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libsolv-0.7.24-1.cm2.x86_64.rpm",
-    "hash": "sha256-KTqumlw9Rt1k9NYuf6KC9PCIcX7H2IzP5Gtr2RPGKz0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libssh2-1.9.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-FAwwrXlYYoFPO8CkYdCW3ioR0h0JYNSiSqnxei6taSU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libstdc++-11.2.0-8.cm2.x86_64.rpm",
-    "hash": "sha256-r6Fgv8hDePRrMdqvNItPEWtP7hb08IPaO35AHRTp+zM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libtasn1-4.19.0-1.cm2.x86_64.rpm",
-    "hash": "sha256-a5Zc9qACmE2Uj+JNj1rvKjuBtxPmPCNz7KrzX/RywNY="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libtool-2.4.6-8.cm2.x86_64.rpm",
-    "hash": "sha256-NnaIVXLFLcX1YvDzlC/ySMOmQ/79AchaX3M3RzUF8zo="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libuv-1.43.0-2.cm2.x86_64.rpm",
-    "hash": "sha256-f4FaPv5CDV6YOwbsrGMb7j8JviWeAf8kAeYAAWfy2hs="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/libxml2-2.10.4-4.cm2.x86_64.rpm",
-    "hash": "sha256-FRx1WGoG0/xHt3BTcSawbCyHN44d4PHn6Vq/FuJjDdU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/lmdb-libs-0.9.29-1.cm2.x86_64.rpm",
-    "hash": "sha256-PsSD81SHiCHWVrxXZ1kP4TnQaVQVbxt+ME/qkwch73c="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/lua-libs-5.4.4-1.cm2.x86_64.rpm",
-    "hash": "sha256-5YwCaHwNkA3dln09WoUv2Bg4mFIoCPu13rwS6Cgi4Ck="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/lvm2-2.03.15-3.cm2.x86_64.rpm",
-    "hash": "sha256-Qro2ZHBptJFBtW6zUSmphkKJrbSVfUbnnAfKZAiVVjA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/l/lz4-1.9.4-1.cm2.x86_64.rpm",
-    "hash": "sha256-B9pc1N0WbufYfjCBtX1uca+TczWWEmuuT3Frgq/etjo="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-release-2.0-68.cm2.noarch.rpm",
-    "hash": "sha256-hpQbcYMD6EI/J7XmJUCbubVjVQH/LVv7HoWllK5mt7g="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-repos-2.0-9.cm2.noarch.rpm",
-    "hash": "sha256-DOlTg2FG+lREEZ3IL34g9j4FiGV8djgaOjD6VLa9Gak="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-repos-extras-2.0-9.cm2.noarch.rpm",
-    "hash": "sha256-rWD3EHg0vEKxDeLcSbIhSeWRK+Uuqay7nSGlFXJtlL4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-repos-microsoft-2.0-9.cm2.noarch.rpm",
-    "hash": "sha256-DuX7mm5GsLUuR/X62smAM0Vv9oWZxFZ4SkVtcz3dd6E="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-repos-shared-2.0-9.cm2.noarch.rpm",
-    "hash": "sha256-ATNFrwjKKHl6xKxr9zu3xHJMqgOO3FU/SYOJ9eGqqcA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/m/mariner-rpm-macros-2.0-25.cm2.noarch.rpm",
-    "hash": "sha256-vz1LyLbAXDBfBrcdFRcOvksc3fR+SNW4bQss14Uf10M="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/ncurses-6.4-2.cm2.x86_64.rpm",
-    "hash": "sha256-oD35Y+rTXJzbZAtolyPnGXWS9LHCdfJpL+XQL3kC/QM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/ncurses-libs-6.4-2.cm2.x86_64.rpm",
-    "hash": "sha256-63ZtTLoOEUhwfCrg7mVQazPHbCDiRxqHHfYClq+8Kkw="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/net-tools-2.10-3.cm2.x86_64.rpm",
-    "hash": "sha256-YRIVTtyC2XBAfNd+GREt5ZcCAGUp5JvkUIZ8T6iKFTU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/nettle-3.7.3-3.cm2.x86_64.rpm",
-    "hash": "sha256-qSVA+6HrMJbsF6LjSB92UNkFQzA4oaO3USNVXJJ0CvE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/newt-0.52.21-5.cm2.x86_64.rpm",
-    "hash": "sha256-JOpgdnPQXqDfSw3fNaC8TO1pZG4MtywQ1E3nGNIlXr4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/nghttp2-1.57.0-2.cm2.x86_64.rpm",
-    "hash": "sha256-XuF58f/+HmhZRp/gZyigIZ3n701luhOuncZUTFDW0l4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/n/npth-1.6-4.cm2.x86_64.rpm",
-    "hash": "sha256-mSkp1/58/hSRh7OtRPg9hn6+gETsKvLFImjD+H00bTc="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/o/openldap-2.4.57-9.cm2.x86_64.rpm",
-    "hash": "sha256-mkw/M94jLEIYwhFveetb2yq8FrUbAUBRxo7c8PZO6Uo="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/o/openssh-clients-8.9p1-6.cm2.x86_64.rpm",
-    "hash": "sha256-J1yAu+hXfR3LeafO06Efpwe2QnRYKKnj5FNQ5EH5pb8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/o/openssl-1.1.1k-35.cm2.x86_64.rpm",
-    "hash": "sha256-vdY6i2a8hdHLlW80aDsTaioNFBfTQNucmioWH61yzKg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/o/openssl-libs-1.1.1k-35.cm2.x86_64.rpm",
-    "hash": "sha256-CipAW/SKK0lBFLOHgung/MDJdcUBDI0vRocDJrABViE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/p11-kit-0.24.1-1.cm2.x86_64.rpm",
-    "hash": "sha256-SbffcLRyOKxaufw1Lyi5Z1amZj8WFDrLbDGMPtBmzBE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/p11-kit-trust-0.24.1-1.cm2.x86_64.rpm",
-    "hash": "sha256-osFhYsJm2wy3cg5+Mc2r5iyFG3mdtQwZ9oQkb2ZyhU8="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pam-1.5.1-6.cm2.x86_64.rpm",
-    "hash": "sha256-ouuV+lKf2Bszm5nzod2Wh6os6hAnyC/4XUdaVQDREmE="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pcre-8.45-2.cm2.x86_64.rpm",
-    "hash": "sha256-88hsYBw30B6Uc89H4qpawyHB9unDXDcvxgbltvpkcKA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pcre-libs-8.45-2.cm2.x86_64.rpm",
-    "hash": "sha256-a+5GUpTEWh6gZekstJyoZLUJvdiDtq+1j/XghKWzz3Q="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pinentry-1.2.0-1.cm2.x86_64.rpm",
-    "hash": "sha256-0xNVCMY6Nz766MmKPs0zBMq+mXtjw6SCio0tsc7vyMI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pkgconf-1.8.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-CGvrVc0eIRs1tGXJvbn70rUSqi8To74HSElkzTXXR7c="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pkgconf-m4-1.8.0-3.cm2.noarch.rpm",
-    "hash": "sha256-pvN4ywNh/eysI9qzKsJtFYvy5aNIP7XcRCVOR8T/d3Y="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/pkgconf-pkg-config-1.8.0-3.cm2.x86_64.rpm",
-    "hash": "sha256-hVvFRxsd6HEO+HcJASnNgxwyWsFT9tnWNZfiXkyyPMc="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/popt-1.18-1.cm2.x86_64.rpm",
-    "hash": "sha256-ldYUsNFpIo5fC/09SIB3HbXH9F4a3eoO/KuYD62elqg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/p/procps-ng-3.3.17-2.cm2.x86_64.rpm",
-    "hash": "sha256-oN9ewJlO+s7wQJ49gBu9SscJGONSaZ2QcGiysDmbrds="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/r/readline-8.1-1.cm2.x86_64.rpm",
-    "hash": "sha256-qfmf8QCo83/QXkKIJAfJrMx2Vv6ozco0RlqpI1b4CTI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/r/rpm-4.18.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-Fx05hcb7qfoiz5UVFFWQcBf3/8EMlT8n//gWKPanQ9I="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/r/rpm-libs-4.18.0-4.cm2.x86_64.rpm",
-    "hash": "sha256-aGQ2tOfZZKewRLs9S4Q27f+ByXB2RsUGrFarmfbhZ40="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/sed-4.8-3.cm2.x86_64.rpm",
-    "hash": "sha256-pFIMOh5ahIYgdWLPLoutirT6SVl0Dser/W9PDakfzW4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/shadow-utils-4.9-13.cm2.x86_64.rpm",
-    "hash": "sha256-XJd4oqNearPQT7vvf/r+HzU//ppRBDXYi5IcDjgE3gI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/slang-2.3.2-4.cm2.x86_64.rpm",
-    "hash": "sha256-gTRB1RxZmn9AqvvLA1sB/8pdhEpz4tySH8nuS4TtoEA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/sqlite-libs-3.39.2-3.cm2.x86_64.rpm",
-    "hash": "sha256-28fCucOtzXHZLKiryg79NVHhlmsKFJU1DGs7z75RMWI="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/sudo-1.9.15p5-1.cm2.x86_64.rpm",
-    "hash": "sha256-vLcX9e4wzILO54mC1U3OO+VYwwH0xfm0/KEO4zy3Z9k="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/systemd-250.3-21.cm2.x86_64.rpm",
-    "hash": "sha256-YVg6D3xfaTDq4TtoPbNs3Ue+i4JhS0zPU0ftvjEuq1Y="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/s/systemd-rpm-macros-250.3-21.cm2.noarch.rpm",
-    "hash": "sha256-aCP9r25fzsZG2rbFP/P/Ox2IIQlhALUbh4xX7l+qEdM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/t/tar-1.34-3.cm2.x86_64.rpm",
-    "hash": "sha256-yAfK4yvqbuXyyUivDPh8dt98M0ajqqgzmby2ajBO1FU="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/t/tdnf-3.5.2-4.cm2.x86_64.rpm",
-    "hash": "sha256-Wpe2F7lVB2V9T1VIRHVKoejvsxh/cjA6Xk3etVXE3fc="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/t/tdnf-cli-libs-3.5.2-4.cm2.x86_64.rpm",
-    "hash": "sha256-oyWs6IL0d5/ORUO3i5uh1VVwBTarOoXnshoZ/2zSYx4="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/t/tdnf-plugin-repogpgcheck-3.5.2-4.cm2.x86_64.rpm",
-    "hash": "sha256-HlKSuio9358b1S3RiSEwZ8mbSZbqy92fKRCYH36+jKM="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/t/tzdata-2024a-1.cm2.noarch.rpm",
-    "hash": "sha256-OOfIUtDsDkrDSdJEC5FoM9TFA3FznvowI1ucaI+ToQg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/u/util-linux-2.37.4-9.cm2.x86_64.rpm",
-    "hash": "sha256-zbod7ZpbpTw1fo7s4xDKYSyl8Q19XWFaulp8cpfbEPg="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/u/util-linux-libs-2.37.4-9.cm2.x86_64.rpm",
-    "hash": "sha256-wxO+hrh6t8+k45/mBrcj3a6hpkSkG8sakShB4hF87m0="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/w/which-2.21-8.cm2.x86_64.rpm",
-    "hash": "sha256-cvnjnOS2+DlZhGnAypznD7KyLM+Wv4AWMdwlyK8cEec="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/x/xz-5.2.5-1.cm2.x86_64.rpm",
-    "hash": "sha256-9kVKFBAfKarCzcPzKYWJm6Sq9C5mDt/iwSJQUoeOk60="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/x/xz-libs-5.2.5-1.cm2.x86_64.rpm",
-    "hash": "sha256-Ax53mnzhmGYsWyZtew38nuzpwMiIple2qbt3Md8AltA="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/z/zlib-1.2.13-2.cm2.x86_64.rpm",
-    "hash": "sha256-hiC8ZIN5x76SkbvyDARol/Tl9jpYLXf9EWtPunlAOws="
-  },
-  {
-    "url": "https://packages.microsoft.com/yumrepos/cbl-mariner-2.0-prod-base-x86_64/Packages/z/zstd-libs-1.5.4-1.cm2.x86_64.rpm",
-    "hash": "sha256-sOSIRIp7lcnYTkzrrFXFEDZXJcIAChxii5sKq8xti64="
-  }
-]
diff --git a/packages/by-name/kata/kata-image/package.nix b/packages/by-name/kata/kata-image/package.nix
index 7cbe10e678..204edaffc8 100644
--- a/packages/by-name/kata/kata-image/package.nix
+++ b/packages/by-name/kata/kata-image/package.nix
@@ -2,246 +2,18 @@
 # SPDX-License-Identifier: AGPL-3.0-only
 
 {
-  lib,
-  stdenv,
-  stdenvNoCC,
-  distro ? "cbl-mariner",
-  kata,
-  bubblewrap,
-  fakeroot,
-  fetchurl,
-  yq-go,
-  tdnf,
-  curl,
-  util-linux,
-  writeText,
-  writeTextDir,
-  createrepo_c,
-  writeShellApplication,
-  parted,
-  cryptsetup,
-  closureInfo,
-  erofs-utils,
-  # pause-bundle is needed for nydus-snapshotter
-  withPauseBundle ? true,
-  pause-bundle,
-}:
-
-let
-  # toplevelNixDeps are packages that get installed to the rootfs of the image
-  # they are used to determine the (nix) closure of the rootfs
-  toplevelNixDeps = [ kata.kata-agent ];
-  nixClosure = builtins.toString (
-    lib.strings.splitString "\n" (
-      builtins.readFile "${closureInfo { rootPaths = toplevelNixDeps; }}/store-paths"
-    )
-  );
-  rootfsExtraTree = stdenvNoCC.mkDerivation {
-    pname = "rootfs-extra-tree";
-    inherit (kata.kata-runtime) src version;
-
-    # https://github.com/microsoft/azurelinux/blob/59ce246f224f282b3e199d9a2dacaa8011b75a06/SPECS/kata-containers-cc/mariner-coco-build-uvm.sh#L34-L41
-    buildPhase =
-      ''
-        runHook preBuild
-
-        mkdir -p /build/rootfs/etc/kata-opa /build/rootfs/usr/lib/systemd/system /build/rootfs/nix/store
-        cp src/agent/kata-agent.service.in /build/rootfs/usr/lib/systemd/system/kata-agent.service
-        cp src/agent/kata-containers.target /build/rootfs/usr/lib/systemd/system/kata-containers.target
-        cat > /build/rootfs/etc/kata-opa/default-policy.rego <<EOF
-        package agent_policy
-        default SetPolicyRequest := true
-        EOF
-        sed -i 's/@BINDIR@\/@AGENT_NAME@/\/usr\/bin\/kata-agent/g'  /build/rootfs/usr/lib/systemd/system/kata-agent.service
-        touch /build/rootfs/etc/machine-id
-      ''
-      + lib.optionalString withPauseBundle ''
-        cp -r ${pause-bundle}/pause_bundle /build/rootfs/pause_bundle
-      ''
-      + ''
-        tar --sort=name --mtime="@$SOURCE_DATE_EPOCH" -cvf /build/rootfs-extra-tree.tar -C /build/rootfs .
-
-        mv /build/rootfs-extra-tree.tar $out
-
-        runHook postBuild
-      '';
-
-    dontInstall = true;
-    dontPatchELF = true;
-  };
-  packageIndex = builtins.fromJSON (builtins.readFile ./package-index.json);
-  rpmSources = lib.forEach packageIndex (
-    p:
-    lib.concatStringsSep "#" [
-      (fetchurl p)
-      (builtins.baseNameOf p.url)
-    ]
-  );
-
-  mirror = stdenvNoCC.mkDerivation {
-    name = "mirror";
-    dontUnpack = true;
-    nativeBuildInputs = [ createrepo_c ];
-    buildPhase = ''
-      runHook preBuild
-
-      mkdir -p $out/packages
-      for source in ${builtins.concatStringsSep " " rpmSources}; do
-        path=$(echo $source | cut -d'#' -f1)
-        filename=$(echo $source | cut -d'#' -f2)
-        ln -s "$path" "$out/packages/$filename"
-      done
-
-      createrepo_c --revision 0 --set-timestamp-to-revision --basedir packages $out
+  buildVerityMicroVM,
+  mkNixosConfig,
 
-      runHook postBuild
-    '';
-    dontPatchELF = true;
-  };
-
-  tdnfConf = writeText "tdnf.conf" ''
-    [main]
-    gpgcheck=1
-    installonly_limit=3
-    clean_requirements_on_remove=0
-    repodir=/etc/yum.repos.d
-    cachedir=/build/var/cache/tdnf
-  '';
-  vendor-reposdir = writeTextDir "yum.repos.d/cbl-mariner-2-vendor.repo" ''
-    [cbl-mariner-2.0-prod-base-x86_64-yum]
-    name=cbl-mariner-2.0-prod-base-x86_64-yum
-    baseurl=file://${mirror}
-    repo_gpgcheck=0
-    gpgcheck=0
-    enabled=1
-  '';
-  buildimage = writeShellApplication {
-    name = "buildimage";
-    runtimeInputs = [
-      parted
-      erofs-utils
-      cryptsetup
-    ];
-    text = builtins.readFile ./buildimage.sh;
-  };
-  kata-image = stdenv.mkDerivation rec {
-    pname = "kata-image";
-    inherit (kata.kata-runtime) src version;
-
-    outputs = [
-      "out"
-      "verity"
-    ];
-
-    env = {
-      AGENT_SOURCE_BIN = "${lib.getExe kata.kata-agent}";
-      CONF_GUEST = "yes";
-      RUST_VERSION = "not-needed";
-    };
-
-    nativeBuildInputs = [
-      yq-go
-      curl
-      fakeroot
-      bubblewrap
-      util-linux
-      tdnf
-      buildimage
-    ];
-
-    sourceRoot = "${src.name}/tools/osbuilder/rootfs-builder";
-
-    buildPhase = ''
-      runHook preBuild
-
-      # Check if filesystem is ext.*
-      fstype=$(stat -f -c %T .)
-      if [[ $fstye == "ext4" || $fstype == "ext2/ext3" ]]; then
-        echo "Due to a bug in the image build, kata-image can unfortunately not be built on $fstype filesystems."
-        echo "As a workaround, you can build the derivation on a different filesystem with the following:"
-        echo "systemctl edit nix-daemon"
-        echo "Then, when editing the unit, enter:"
-        echo "[Service]"
-        echo 'Environment=TMPDIR=/some-non-ext*-filesystem'
-        echo "Then restart the nix-daemon with:"
-        echo "systemctl restart nix-daemon"
-        echo "Then rebuild the derivation."
-        exit 1
-      fi
-
-      export CONFIDENTIAL_GUEST=yes
-
-      # use a fakeroot environment to build the rootfs as a tar
-      # this is required to create files with the correct ownership and permissions
-      # including suid
-      # Upstream build invokation:
-      # https://github.com/microsoft/azurelinux/blob/59ce246f224f282b3e199d9a2dacaa8011b75a06/SPECS/kata-containers-cc/mariner-coco-build-uvm.sh#L18
-      mkdir -p /build/var/run
-      mkdir -p /build/var/tdnf
-      mkdir -p /build/var/lib/tdnf
-      mkdir -p /build/var/cache/tdnf
-      mkdir -p /build/root
-      # add the extra files before building to make the systemd units available
-      tar --extract --file=${rootfsExtraTree} --directory=/build/root
-      unshare --map-root-user bwrap \
-        --bind /nix /nix \
-        --bind ${tdnfConf} /etc/tdnf/tdnf.conf \
-        --bind ${vendor-reposdir}/yum.repos.d /etc/yum.repos.d \
-        --bind /build /build \
-        --bind /build/var /var \
-        --dev-bind /dev/null /dev/null \
-        fakeroot bash -c "bash $(pwd)/rootfs.sh -r /build/root ${distro} && \
-          tar \
-            --exclude='./usr/lib/systemd/system/systemd-coredump@*' \
-            --exclude='./usr/lib/systemd/system/systemd-journald*' \
-            --exclude='./usr/lib/systemd/system/systemd-journald-dev-log*' \
-            --exclude='./usr/lib/systemd/system/systemd-journal-flush*' \
-            --exclude='./usr/lib/systemd/system/systemd-random-seed*' \
-            --exclude='./usr/lib/systemd/system/systemd-timesyncd*' \
-            --exclude='./usr/lib/systemd/system/systemd-tmpfiles-setup*' \
-            --exclude='./usr/lib/systemd/system/systemd-update-utmp*' \
-            --exclude='./usr/lib/sysimage/tdnf/history.db' \
-            --exclude='*systemd-bless-boot-generator*' \
-            --exclude='*systemd-fstab-generator*' \
-            --exclude='*systemd-getty-generator*' \
-            --exclude='*systemd-gpt-auto-generator*' \
-            --exclude='*systemd-tmpfiles-cleanup.timer*' \
-            --sort=name --mtime='UTC 1970-01-01' -C /build/root -c . -f /build/rootfs.tar"
-
-      # add the closure to the rootfs
-      tar --hard-dereference --transform 's+^+./+' -cf /build/closure.tar --mtime="@$SOURCE_DATE_EPOCH" --sort=name ${nixClosure}
-      # combine the rootfs and the closure
-      tar --concatenate --file=/build/rootfs.tar /build/closure.tar
-
-      # convert tar to a squashfs image with dm-verity hash
-      ${lib.getExe buildimage} /build/rootfs.tar $out
-
-      runHook postBuild
-    '';
-
-    postInstall = ''
-      # split outputs into raw image (out) and dm-verity data (verity)
-      mkdir -p $verity
-      mv $out/{dm_verity.txt,roothash,salt,hash_type,data_blocks,data_block_size,hash_blocks,hash_block_size,hash_algorithm} $verity/
-      mv $out/raw.img /build/raw.img
-      rm -rf $out
-      mv /build/raw.img $out
-    '';
+  withDebug ? false,
+  withGPU ? false,
+}:
 
-    passthru = {
-      dmVerityArgs =
-        let
-          dataBlockSize = builtins.readFile "${kata-image.verity}/data_block_size";
-          hashBlockSize = builtins.readFile "${kata-image.verity}/hash_block_size";
-          dataBlocks = builtins.readFile "${kata-image.verity}/data_blocks";
-          rootHash = builtins.readFile "${kata-image.verity}/roothash";
-          salt = builtins.readFile "${kata-image.verity}/salt";
-          dataSectorsPerBlock = (lib.strings.toInt dataBlockSize) / 512;
-          dataSectors = (lib.strings.toInt dataBlocks) * dataSectorsPerBlock;
-        in
-        "dm-mod.create=\"dm-verity,,,ro,0 ${toString dataSectors} verity 1 /dev/vda1 /dev/vda2 ${dataBlockSize} ${hashBlockSize} ${dataBlocks} 0 sha256 ${rootHash} ${salt}\" root=/dev/dm-0";
-    };
-    dontPatchELF = true;
+buildVerityMicroVM (mkNixosConfig {
+  contrast = {
+    debug.enable = withDebug;
+    gpu.enable = withGPU;
+    kata.enable = true;
+    image.microVM = true;
   };
-in
-kata-image
+})
diff --git a/packages/by-name/kata/kata-kernel-uvm/package.nix b/packages/by-name/kata/kata-kernel-uvm/package.nix
index 79d0ba442f..f825bc6625 100644
--- a/packages/by-name/kata/kata-kernel-uvm/package.nix
+++ b/packages/by-name/kata/kata-kernel-uvm/package.nix
@@ -7,6 +7,7 @@
   stdenvNoCC,
   fetchzip,
   kata,
+  ... # Required for invocation through `linuxPackagesFor`, which calls this with the `features` argument.
 }:
 
 let
diff --git a/packages/by-name/kata/kata-runtime/package.nix b/packages/by-name/kata/kata-runtime/package.nix
index a3e7bd5a4d..404a0d528c 100644
--- a/packages/by-name/kata/kata-runtime/package.nix
+++ b/packages/by-name/kata/kata-runtime/package.nix
@@ -96,6 +96,8 @@ buildGoModule rec {
 
       # Disable a check in Kata that prevents to set both image and initrd.
       # For us, there's no practical reason not to do so.
+      # No upstream patch available, changes first need to be discussed with Kata maintainers.
+      # See https://katacontainers.slack.com/archives/C879ACQ00/p1731928491942299
       ./0017-runtime-allow-initrd-AND-image-to-be-set.patch
     ];
   };
@@ -148,5 +150,15 @@ buildGoModule rec {
     in
     [ "-skip=^${builtins.concatStringsSep "$|^" skippedTests}$" ];
 
+  # Default commandline used by Kata containers.
+  # This has no single source upstream, but can be derived by manually checking what command-line
+  # is used when Kata starts a VM.
+  # For example, this command should do the job:
+  # `journalctl -t kata -l --no-pager | grep launching | tail -1`
+  passthru.cmdline = {
+    default = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 quiet systemd.show_status=false panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none";
+    debug = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 debug systemd.show_status=true systemd.log_level=debug panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none agent.log=debug agent.debug_console agent.debug_console_vport=1026";
+  };
+
   meta.mainProgram = "containerd-shim-kata-v2";
 }
diff --git a/packages/by-name/kata/snp-launch-digest/package.nix b/packages/by-name/kata/snp-launch-digest/package.nix
index 7fc21fb4aa..f3759664cc 100644
--- a/packages/by-name/kata/snp-launch-digest/package.nix
+++ b/packages/by-name/kata/snp-launch-digest/package.nix
@@ -12,18 +12,22 @@
 }:
 
 let
-  kernel = "${kata.kata-kernel-uvm}/bzImage";
   ovmf-snp = "${OVMF-SNP}/FV/OVMF.fd";
-  image = kata.kata-image;
-  inherit (image) dmVerityArgs;
-  cmdlineBase = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 quiet systemd.show_status=false panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none";
-  cmdlineBaseDebug = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 debug systemd.show_status=true systemd.log_level=debug panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none agent.log=debug agent.debug_console agent.debug_console_vport=1026";
-  cmdline = "${if debug then cmdlineBaseDebug else cmdlineBase} ${dmVerityArgs}";
+  kernel = "${kata.kata-image}/bzImage";
+  initrd = "${kata.kata-image}/initrd";
+
+  # Kata uses a base command line and then appends the command line from the kata config (i.e. also our node-installer config).
+  # Thus, we need to perform the same steps when calculating the digest.
+  baseCmdline = if debug then kata.kata-runtime.cmdline.debug else kata.kata-runtime.cmdline.default;
+  cmdline = lib.strings.concatStringsSep " " [
+    baseCmdline
+    kata.kata-image.cmdline
+  ];
 in
 
 stdenvNoCC.mkDerivation {
   name = "snp-launch-digest${lib.optionalString debug "-debug"}";
-  inherit (image) version;
+  inherit (kata.kata-image) version;
 
   dontUnpack = true;
 
@@ -35,7 +39,8 @@ stdenvNoCC.mkDerivation {
       --vcpus 1 \
       --vcpu-type EPYC-Milan \
       --kernel ${kernel} \
-      --append '${cmdline}' \
+      --initrd ${initrd} \
+      --append "${cmdline}" \
       --output-format hex > $out/milan.hex
     ${lib.getExe python3Packages.sev-snp-measure} \
       --mode snp \
@@ -43,11 +48,8 @@ stdenvNoCC.mkDerivation {
       --vcpus 1 \
       --vcpu-type EPYC-Genoa \
       --kernel ${kernel} \
-      --append '${cmdline}' \
+      --initrd ${initrd} \
+      --append "${cmdline}" \
       --output-format hex > $out/genoa.hex
   '';
-
-  passthru = {
-    inherit dmVerityArgs;
-  };
 }
diff --git a/packages/by-name/kata/tdx-launch-digests/package.nix b/packages/by-name/kata/tdx-launch-digests/package.nix
index 9e3bb8dbf1..1916462fc7 100644
--- a/packages/by-name/kata/tdx-launch-digests/package.nix
+++ b/packages/by-name/kata/tdx-launch-digests/package.nix
@@ -11,25 +11,31 @@
   debug ? false,
 }:
 let
-  image = kata.kata-image;
-  inherit (image) dmVerityArgs;
-  cmdlineBase = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 quiet systemd.show_status=false panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none";
-  cmdlineBaseDebug = "tsc=reliable no_timer_check rcupdate.rcu_expedited=1 i8042.direct=1 i8042.dumbkbd=1 i8042.nopnp=1 i8042.noaux=1 noreplace-smp reboot=k cryptomgr.notests net.ifnames=0 pci=lastbus=0 root=/dev/vda1 rootflags=ro rootfstype=erofs console=hvc0 console=hvc1 debug systemd.show_status=true systemd.log_level=debug panic=1 nr_cpus=1 selinux=0 systemd.unit=kata-containers.target systemd.mask=systemd-networkd.service systemd.mask=systemd-networkd.socket scsi_mod.scan=none agent.log=debug agent.debug_console agent.debug_console_vport=1026";
-  cmdline = "${if debug then cmdlineBaseDebug else cmdlineBase} ${dmVerityArgs}";
+  ovmf-tdx = "${OVMF-TDX}/FV/OVMF.fd";
+  kernel = "${kata.kata-image}/bzImage";
+  initrd = "${kata.kata-image}/initrd";
+
+  # Kata uses a base command line and then appends the command line from the kata config (i.e. also our node-installer config).
+  # Thus, we need to perform the same steps when calculating the digest.
+  baseCmdline = if debug then kata.kata-runtime.cmdline.debug else kata.kata-runtime.cmdline.default;
+  cmdline = lib.strings.concatStringsSep " " [
+    baseCmdline
+    kata.kata-image.cmdline
+  ];
 in
 stdenvNoCC.mkDerivation {
   name = "tdx-launch-digests";
-  inherit (image) version;
+  inherit (kata.kata-image) version;
 
   dontUnpack = true;
 
   buildPhase = ''
     mkdir $out
 
-    ${lib.getExe tdx-measure} mrtd -f ${OVMF-TDX}/FV/OVMF.fd > $out/mrtd.hex
-    ${lib.getExe tdx-measure} rtmr -f ${OVMF-TDX}/FV/OVMF.fd -k ${kata.kata-kernel-uvm}/bzImage -c '${cmdline}' 0 > $out/rtmr0.hex
-    ${lib.getExe tdx-measure} rtmr -f ${OVMF-TDX}/FV/OVMF.fd -k ${kata.kata-kernel-uvm}/bzImage -c '${cmdline}' 1 > $out/rtmr1.hex
-    ${lib.getExe tdx-measure} rtmr -f ${OVMF-TDX}/FV/OVMF.fd -k ${kata.kata-kernel-uvm}/bzImage -c '${cmdline}' 2 > $out/rtmr2.hex
-    ${lib.getExe tdx-measure} rtmr -f ${OVMF-TDX}/FV/OVMF.fd -k ${kata.kata-kernel-uvm}/bzImage -c '${cmdline}' 3 > $out/rtmr3.hex
+    ${lib.getExe tdx-measure} mrtd -f ${ovmf-tdx} > $out/mrtd.hex
+    ${lib.getExe tdx-measure} rtmr -f ${ovmf-tdx} -k ${kernel} -i ${initrd} -c '${cmdline}' 0 > $out/rtmr0.hex
+    ${lib.getExe tdx-measure} rtmr -f ${ovmf-tdx} -k ${kernel} -i ${initrd} -c '${cmdline}' 1 > $out/rtmr1.hex
+    ${lib.getExe tdx-measure} rtmr -f ${ovmf-tdx} -k ${kernel} -i ${initrd} -c '${cmdline}' 2 > $out/rtmr2.hex
+    ${lib.getExe tdx-measure} rtmr -f ${ovmf-tdx} -k ${kernel} -i ${initrd} -c '${cmdline}' 3 > $out/rtmr3.hex
   '';
 }
diff --git a/packages/by-name/mkNixosConfig/package.nix b/packages/by-name/mkNixosConfig/package.nix
index 767761accb..e5b90e109d 100644
--- a/packages/by-name/mkNixosConfig/package.nix
+++ b/packages/by-name/mkNixosConfig/package.nix
@@ -45,7 +45,11 @@ lib.makeOverridable (
             nvidia-ctk-with-config
             tdx-tools
             ;
-          inherit (outerPkgs.kata) kata-agent;
+          inherit (outerPkgs.kata)
+            kata-agent
+            kata-runtime
+            kata-kernel-uvm
+            ;
         })
       ];
 
diff --git a/packages/by-name/qemu-tdx-static/0004-hw-x86-load-initrd-to-static-address.patch b/packages/by-name/qemu-tdx-static/0004-hw-x86-load-initrd-to-static-address.patch
new file mode 100644
index 0000000000..6c26926949
--- /dev/null
+++ b/packages/by-name/qemu-tdx-static/0004-hw-x86-load-initrd-to-static-address.patch
@@ -0,0 +1,87 @@
+From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
+From: Moritz Sanft <58110325+msanft@users.noreply.github.com>
+Date: Thu, 21 Nov 2024 14:36:23 +0100
+Subject: [PATCH] hw/x86: load initrd to static address
+
+For TDX RTMRs to be predictable regardless of VM memory size, we need to
+load the initrd to a static address, so no dynamic value ends up in the
+mapped kernel image.
+
+Without setting this to a static address, the address the initrd is mapped to
+which depend not only on the size of the initrd, but also on the memory space
+of the guest, this is not viable for Contrast's reference-value-based attestation
+approach.
+
+As we control the minimum VM memory size in Contrast, we just load the initrd
+to the address it gets loaded to for Contrast's minimum VM memory (2Gi), regardless
+of if the VM has more memory.
+
+QEMU, by default, does a similar thing.
+Consider the below line (cited from above):
+
+   `initrd_max = x86ms->below_4g_mem_size - acpi_data_size - 1;`
+
+This adds an artifical upper bound of where the initrd can be loaded to, as
+the calculation is based on the VM memory (below_4g_mem_size), but capped at 4Gi.
+This means, the initrd, regardless of guest memory size, will always be loaded
+at address 0x100000000 (4Gi) max (minus ACPI data size).
+
+Essentially, overwriting this to 0x80000000 (2Gi), we create an artificial lower *and*
+upper bound (set to Contrast minimum TDX VM memory size).
+This means that the initrd will *always* be loaded at 0x80000000 (2Gi), minus ACPI
+data size. The difference to QEMU's setting is, that we *fix* the address, rather than
+setting *only* an upper bound.
+
+This way, we get the initrd to *always* be loaded at a static address.
+
+Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>
+---
+ hw/i386/x86.c | 35 +++++++++++++++++++++++++++++++++++
+ 1 file changed, 35 insertions(+)
+
+diff --git a/hw/i386/x86.c b/hw/i386/x86.c
+index 504575abfa98bc25e498e219a2d58d8d31e5feaa..0763462c16f4106d0aa6a46c2b9c360e36ae3e96 100644
+--- a/hw/i386/x86.c
++++ b/hw/i386/x86.c
+@@ -953,6 +953,41 @@ void x86_load_linux(X86MachineState *x86ms,
+         initrd_max = x86ms->below_4g_mem_size - acpi_data_size - 1;
+     }
+ 
++    /*
++     * For TDX RTMRs to be predictable regardless of VM memory size, we need to
++     * load the initrd to a static address, so no dynamic value ends up in the
++     * mapped kernel image.
++     *
++     * Without setting this to a static address, the address the initrd is mapped to
++     * which depend not only on the size of the initrd, but also on the memory space
++     * of the guest, this is not viable for Contrast's reference-value-based attestation
++     * approach.
++     *
++     * As we control the minimum VM memory size in Contrast, we just load the initrd
++     * to the address it gets loaded to for Contrast's minimum VM memory (2Gi), regardless
++     * of if the VM has more memory.
++     *
++     * QEMU, by default, does a similar thing.
++     * Consider the below line (cited from above):
++     *
++     *    initrd_max = x86ms->below_4g_mem_size - acpi_data_size - 1;
++     *
++     * This adds an artifical upper bound of where the initrd can be loaded to, as
++     * the calculation is based on the VM memory (below_4g_mem_size), but capped at 4Gi.
++     * This means, the initrd, regardless of guest memory size, will always be loaded
++     * at address 0x100000000 (4Gi) max (minus ACPI data size).
++     *
++     * Essentially, overwriting this to 0x80000000 (2Gi), we create an artificial lower *and*
++     * upper bound (set to Contrast minimum TDX VM memory size).
++     * This means that the initrd will *always* be loaded at 0x80000000 (2Gi), minus ACPI
++     * data size. The difference to QEMU's setting is, that we *fix* the address, rather than
++     * setting *only* an upper bound.
++     *
++     * This way, we get the initrd to *always* be loaded at a static address.
++     */
++    uint32_t contrast_min_memory = 0x80000000; // 2Gi
++    initrd_max = contrast_min_memory - acpi_data_size - 1;
++
+     fw_cfg_add_i32(fw_cfg, FW_CFG_CMDLINE_ADDR, cmdline_addr);
+     fw_cfg_add_i32(fw_cfg, FW_CFG_CMDLINE_SIZE, strlen(kernel_cmdline) + 1);
+     fw_cfg_add_string(fw_cfg, FW_CFG_CMDLINE_DATA, kernel_cmdline);
diff --git a/packages/by-name/qemu-tdx-static/package.nix b/packages/by-name/qemu-tdx-static/package.nix
index 521cf11487..58af1704fa 100644
--- a/packages/by-name/qemu-tdx-static/package.nix
+++ b/packages/by-name/qemu-tdx-static/package.nix
@@ -61,5 +61,7 @@ in
       # Make the generated ACPI tables more deterministic, so that we get a
       # fixed hash for attestation.
       ./0003-i386-omit-some-unneeded-ACPI-tables.patch
+      # Load the initrd to a static address to make RTMRs predictable.
+      ./0004-hw-x86-load-initrd-to-static-address.patch
     ];
   })
diff --git a/packages/nixos/azure.nix b/packages/nixos/azure.nix
index 4f2a70a94f..6da4f97e47 100644
--- a/packages/nixos/azure.nix
+++ b/packages/nixos/azure.nix
@@ -55,6 +55,8 @@ in
   };
 
   config = lib.mkIf cfg.enable {
+    boot.kernelPackages = pkgs.recurseIntoAttrs (pkgs.linuxPackagesFor pkgs.kernel-podvm-azure);
+
     boot.initrd = {
       kernelModules = [
         "hv_storvsc"
diff --git a/packages/nixos/debug.nix b/packages/nixos/debug.nix
index 38958f87f8..19cfac9b0f 100644
--- a/packages/nixos/debug.nix
+++ b/packages/nixos/debug.nix
@@ -32,7 +32,16 @@ in
 
     services.getty.autologinUser = "root";
 
-    boot.kernelParams = [ "console=ttyS0" ];
+    # If the image is to be booted locally for testing purposes through
+    # .#boot-image, or if the image is booted on Peer-pods (on Azure), the
+    # console should be ttyS0, as this is what Azure and QEMU expose by default to the
+    # user for reading. However, when one builds a Kata image (e.g. for bare-metal), setting
+    # console=ttyS0 will break the VM logging (i.e. Kata's "reading guest console"), as this
+    # only listens on hvc* TTYs. As we have no indicator on whether an image should be booted locally,
+    # we only set console=ttyS0 when the image is a debug-image and on Peer-pods. So for local
+    # booting of an image, one needs to remove the optional manually.
+    boot.kernelParams = lib.optionals config.contrast.peerpods.enable [ "console=ttyS0" ];
+
     boot.initrd.systemd.emergencyAccess = true;
     systemd.enableEmergencyMode = true;
   };
diff --git a/packages/nixos/image.nix b/packages/nixos/image.nix
index 192102e5cc..caf834473a 100644
--- a/packages/nixos/image.nix
+++ b/packages/nixos/image.nix
@@ -1,62 +1,80 @@
 # Copyright 2024 Edgeless Systems GmbH
 # SPDX-License-Identifier: AGPL-3.0-only
 
-{ config, pkgs, ... }:
+{
+  config,
+  pkgs,
+  lib,
+  ...
+}:
+
+let
+  cfg = config.contrast.image;
+in
 
 {
-  # We build the image with systemd-repart, which integrates well
-  # with the systemd utilities we use for dm-verity, UKI, etc.
-  # However, we do not use the repart unit, as we don't want
-  # dynamic repartitioning at run- / boot-time.
-  image.repart = {
-    name = "image-podvm-gpu";
-    version = "1-rc1";
+  options.contrast.image = {
+    microVM = lib.mkEnableOption "Build a micro VM image";
+  };
 
-    # This defines the actual partition layout.
-    partitions = {
-      # EFI System Partition, holds the UKI.
-      "00-esp" = {
-        contents = {
-          "/".source = pkgs.runCommand "esp-contents" { } ''
-            mkdir -p $out/EFI/BOOT
-            cp ${config.system.build.uki}/${config.system.boot.loader.ukiFile} $out/EFI/BOOT/BOOTX64.EFI
-          '';
-        };
-        repartConfig = {
-          Type = "esp";
-          Format = "vfat";
-          SizeMinBytes = "64M";
-          UUID = "null"; # Fix partition UUID for reproducibility.
-        };
-      };
+  config = {
+    system.image.version = "1-rc1";
+
+    # We build the image with systemd-repart, which integrates well
+    # with the systemd utilities we use for dm-verity, UKI, etc.
+    # However, we do not use the repart unit, as we don't want
+    # dynamic repartitioning at run- / boot-time.
+    image.repart = {
+      name = "image-podvm-gpu";
+      inherit (config.system.image) version;
 
-      # Root filesystem.
-      "10-root" = {
-        contents = {
-          "/pause_bundle".source = "${pkgs.pause-bundle}/pause_bundle";
+      # This defines the actual partition layout.
+      partitions = {
+        # EFI System Partition, holds the UKI.
+        # Only build this partition if we need a bootable image (i.e. not a micro VM).
+        "00-esp" = lib.mkIf (!cfg.microVM) {
+          contents = {
+            "/".source = pkgs.runCommand "esp-contents" { } ''
+              mkdir -p $out/EFI/BOOT
+              cp ${config.system.build.uki}/${config.system.boot.loader.ukiFile} $out/EFI/BOOT/BOOTX64.EFI
+            '';
+          };
+          repartConfig = {
+            Type = "esp";
+            Format = "vfat";
+            SizeMinBytes = "64M";
+            UUID = "null"; # Fix partition UUID for reproducibility.
+          };
         };
-        storePaths = [ config.system.build.toplevel ];
-        repartConfig = {
-          Type = "root";
-          Format = "erofs";
-          Label = "root";
-          Verity = "data";
-          VerityMatchKey = "root";
-          Minimize = "best";
-          # We need to ensure that mountpoints are available.
-          # TODO (Maybe): This could be done more elegantly with CopyFiles and a skeleton tree in the vcs.
-          MakeDirectories = "/bin /boot /dev /etc /home /lib /lib64 /mnt /nix /opt /proc /root /run /srv /sys /tmp /usr/bin /var";
+
+        # Root filesystem.
+        "10-root" = {
+          contents = {
+            "/pause_bundle".source = "${pkgs.pause-bundle}/pause_bundle";
+          };
+          storePaths = [ config.system.build.toplevel ];
+          repartConfig = {
+            Type = "root";
+            Format = "erofs";
+            Label = "root";
+            Verity = "data";
+            VerityMatchKey = "root";
+            Minimize = "best";
+            # We need to ensure that mountpoints are available.
+            # TODO (Maybe): This could be done more elegantly with CopyFiles and a skeleton tree in the vcs.
+            MakeDirectories = "/bin /boot /dev /etc /home /lib /lib64 /mnt /nix /opt /proc /root /run /srv /sys /tmp /usr/bin /var";
+          };
         };
-      };
 
-      # Verity hashes for the root filesystem.
-      "20-root-verity" = {
-        repartConfig = {
-          Type = "root-verity";
-          Label = "root-verity";
-          Verity = "hash";
-          VerityMatchKey = "root";
-          Minimize = "best";
+        # Verity hashes for the root filesystem.
+        "20-root-verity" = {
+          repartConfig = {
+            Type = "root-verity";
+            Label = "root-verity";
+            Verity = "hash";
+            VerityMatchKey = "root";
+            Minimize = "best";
+          };
         };
       };
     };
diff --git a/packages/nixos/kata.nix b/packages/nixos/kata.nix
index d31681f850..fa85326bff 100644
--- a/packages/nixos/kata.nix
+++ b/packages/nixos/kata.nix
@@ -1,90 +1,98 @@
 # Copyright 2024 Edgeless Systems GmbH
 # SPDX-License-Identifier: AGPL-3.0-only
 
-{ lib, pkgs, ... }:
-
 {
-  systemd.services.kata-agent = {
-    description = "Kata Containers Agent";
-    documentation = [
-      "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/kata-agent.service"
-    ];
-    bindsTo = [ "netns@podns.service" ];
-    wants = [ "process-user-data.service" ];
-    after = [
-      "netns@podns.service"
-      "process-user-data.service"
-    ];
-    wantedBy = [ "multi-user.target" ];
-    serviceConfig = {
-      Type = "exec"; # Not upstream.
-      ExecStartPre = [ "${pkgs.coreutils}/bin/mkdir -p /run/kata-containers" ];
-      ExecStart = "${lib.getExe pkgs.kata-agent} --config /run/peerpod/agent-config.toml";
-      ExecStopPost = "${lib.getExe pkgs.cloud-api-adaptor.kata-agent-clean} --config /run/peerpod/agent-config.toml";
-      SyslogIdentifier = "kata-agent";
-    };
-    environment = {
-      KATA_AGENT_LOG_LEVEL = "debug";
-      OCICRYPT_KEYPROVIDER_CONFIG = builtins.toFile "policy.json" (
-        lib.strings.toJSON { default = [ { type = "insecureAcceptAnything"; } ]; }
-      );
-    };
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+let
+  cfg = config.contrast.kata;
+in
+{
+  options.contrast.kata = {
+    enable = lib.mkEnableOption "Enable Kata (non-peerpod) support";
   };
 
-  systemd.services.agent-protocol-forwarder = {
-    description = "Agent Protocol Forwarder";
-    documentation = [
-      "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/agent-protocol-forwarder.service"
-    ];
-    wants = [ "kata-agent.service" ];
-    after = [ "kata-agent.service" ];
-    wantedBy = [ "multi-user.target" ];
-    unitConfig = {
-      DefaultDependencies = false;
-    };
-    serviceConfig = {
-      Type = "notify";
-      ExecStart = lib.strings.concatStringsSep " " [
-        "${pkgs.cloud-api-adaptor}/bin/agent-protocol-forwarder"
-        "-kata-agent-namespace /run/netns/podns"
-        "-kata-agent-socket /run/kata-containers/agent.sock"
+  config = lib.mkIf cfg.enable {
+    # https://github.com/kata-containers/kata-containers/blob/3.10.1/src/agent/kata-containers.target
+    systemd.targets.kata-containers = {
+      description = "Kata Containers Agent Target";
+      requires = [
+        "basic.target"
+        "tmp.mount"
+        "kata-agent.service"
       ];
-      Restart = "on-failure";
-      RestartSec = "5s";
+      wantedBy = [ "basic.target" ];
+      wants = [
+        "chronyd.service"
+        # https://github.com/kata-containers/kata-containers/blob/5869046d04553c3bd2f16fa1cfb714133050e537/tools/osbuilder/rootfs-builder/rootfs.sh#L712
+        "dbus.socket"
+      ];
+      conflicts = [
+        "rescue.service"
+        "rescue.target"
+      ];
+      after = [
+        "basic.target"
+        "rescue.service"
+        "rescue.target"
+      ];
+      unitConfig.AllowIsolate = true;
     };
-  };
 
-  systemd.services.process-user-data = {
-    description = "Pull configuration from metadata service";
-    documentation = [
-      "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/process-user-data.service"
-    ];
-    wants = [ "network-online.target" ];
-    after = [ "network-online.target" ];
-    wantedBy = [ "multi-user.target" ];
-    unitConfig = {
-      DefaultDependencies = false;
+    # https://github.com/kata-containers/kata-containers/blob/3.10.1/src/agent/kata-agent.service.in
+    systemd.services.kata-agent = {
+      description = "Kata Containers Agent";
+      documentation = [ "https://github.com/kata-containers/kata-containers" ];
+      wants = [ "kata-containers.target" ];
+      after = [ "systemd-tmpfiles-setup.service" ]; # Not upstream, but required for /etc/resolv.conf bind mount.
+      serviceConfig = {
+        Type = "exec"; # Not upstream.
+        StandardOutput = "tty";
+        ExecStart = "${lib.getExe pkgs.kata-agent}";
+        LimitNOFILE = 1048576;
+        ExecStop = "${pkgs.coreutils}/bin/sync ; ${config.systemd.package}/bin/systemctl --force poweroff";
+        FailureAction = "poweroff";
+        OOMScoreAdjust = -997;
+      };
+      # Not upstream
+      environment = {
+        KATA_AGENT_LOG_LEVEL = "debug";
+        OCICRYPT_KEYPROVIDER_CONFIG = builtins.toFile "policy.json" (
+          lib.strings.toJSON { default = [ { type = "insecureAcceptAnything"; } ]; }
+        );
+      };
     };
-    serviceConfig = {
-      Type = "oneshot";
-      ExecStart = "${pkgs.cloud-api-adaptor}/bin/process-user-data provision-files";
-      RemainAfterExit = true;
+
+    fileSystems."/run" = {
+      fsType = "tmpfs";
+      options = [
+        "nodev"
+        "nosuid"
+        "size=50%"
+      ];
+      neededForBoot = true;
     };
-  };
 
-  systemd.services."netns@" = {
-    description = "Create a network namespace for pod networking";
-    documentation = [
-      "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/netns%40.service"
-    ];
-    serviceConfig = {
-      Type = "oneshot";
-      RemainAfterExit = true;
-      ExecStartPre = "${pkgs.iproute2}/bin/ip netns add %I";
-      ExecStart = "${pkgs.iproute2}/bin/ip netns exec %I ${pkgs.iproute2}/bin/ip link set lo up";
-      ExecStop = "${pkgs.iproute2}/bin/ip netns del %I";
+    # Not used directly, but required for kernel-specific driver builds.
+    boot.kernelPackages = pkgs.recurseIntoAttrs (pkgs.linuxPackagesFor pkgs.kata-kernel-uvm);
+
+    boot.initrd = {
+      # Don't require TPM2 support. (additional modules)
+      systemd.tpm2.enable = false;
+      # Don't require any of the hardware modules NixOS includes by default.
+      includeDefaultModules = false;
+    };
+
+    networking.resolvconf.enable = false;
+    systemd.tmpfiles.settings."10-etc-resolvconf"."/etc/resolv.conf".f = {
+      group = "root";
+      mode = "0755";
+      user = "root";
     };
-  };
 
-  environment.etc."kata-opa/default-policy.rego".source = pkgs.cloud-api-adaptor.default-policy;
+    environment.etc."kata-opa/default-policy.rego".source = "${pkgs.kata-runtime.src}/src/kata-opa/allow-set-policy.rego";
+  };
 }
diff --git a/packages/nixos/peerpods.nix b/packages/nixos/peerpods.nix
new file mode 100644
index 0000000000..116768e519
--- /dev/null
+++ b/packages/nixos/peerpods.nix
@@ -0,0 +1,103 @@
+# Copyright 2024 Edgeless Systems GmbH
+# SPDX-License-Identifier: AGPL-3.0-only
+
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+let
+  cfg = config.contrast.peerpods;
+in
+{
+  options.contrast.peerpods = {
+    enable = lib.mkEnableOption "Enable peer pods support";
+  };
+
+  config = lib.mkIf cfg.enable {
+    systemd.services.kata-agent = {
+      description = "Kata Containers Agent";
+      documentation = [
+        "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/kata-agent.service"
+      ];
+      bindsTo = [ "netns@podns.service" ];
+      wants = [ "process-user-data.service" ];
+      after = [
+        "netns@podns.service"
+        "process-user-data.service"
+      ];
+      wantedBy = [ "multi-user.target" ];
+      serviceConfig = {
+        Type = "exec"; # Not upstream.
+        ExecStartPre = [ "${pkgs.coreutils}/bin/mkdir -p /run/kata-containers" ];
+        ExecStart = "${lib.getExe pkgs.kata-agent} --config /run/peerpod/agent-config.toml";
+        ExecStopPost = "${lib.getExe pkgs.cloud-api-adaptor.kata-agent-clean} --config /run/peerpod/agent-config.toml";
+        SyslogIdentifier = "kata-agent";
+      };
+      environment = {
+        KATA_AGENT_LOG_LEVEL = "debug";
+        OCICRYPT_KEYPROVIDER_CONFIG = builtins.toFile "policy.json" (
+          lib.strings.toJSON { default = [ { type = "insecureAcceptAnything"; } ]; }
+        );
+      };
+    };
+
+    systemd.services.agent-protocol-forwarder = {
+      description = "Agent Protocol Forwarder";
+      documentation = [
+        "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/agent-protocol-forwarder.service"
+      ];
+      wants = [ "kata-agent.service" ];
+      after = [ "kata-agent.service" ];
+      wantedBy = [ "multi-user.target" ];
+      unitConfig = {
+        DefaultDependencies = false;
+      };
+      serviceConfig = {
+        Type = "notify";
+        ExecStart = lib.strings.concatStringsSep " " [
+          "${pkgs.cloud-api-adaptor}/bin/agent-protocol-forwarder"
+          "-kata-agent-namespace /run/netns/podns"
+          "-kata-agent-socket /run/kata-containers/agent.sock"
+        ];
+        Restart = "on-failure";
+        RestartSec = "5s";
+      };
+    };
+
+    systemd.services.process-user-data = {
+      description = "Pull configuration from metadata service";
+      documentation = [
+        "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/process-user-data.service"
+      ];
+      wants = [ "network-online.target" ];
+      after = [ "network-online.target" ];
+      wantedBy = [ "multi-user.target" ];
+      unitConfig = {
+        DefaultDependencies = false;
+      };
+      serviceConfig = {
+        Type = "oneshot";
+        ExecStart = "${pkgs.cloud-api-adaptor}/bin/process-user-data provision-files";
+        RemainAfterExit = true;
+      };
+    };
+
+    systemd.services."netns@" = {
+      description = "Create a network namespace for pod networking";
+      documentation = [
+        "https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/podvm/files/etc/systemd/system/netns%40.service"
+      ];
+      serviceConfig = {
+        Type = "oneshot";
+        RemainAfterExit = true;
+        ExecStartPre = "${pkgs.iproute2}/bin/ip netns add %I";
+        ExecStart = "${pkgs.iproute2}/bin/ip netns exec %I ${pkgs.iproute2}/bin/ip link set lo up";
+        ExecStop = "${pkgs.iproute2}/bin/ip netns del %I";
+      };
+    };
+
+    environment.etc."kata-opa/default-policy.rego".source = pkgs.cloud-api-adaptor.default-policy;
+  };
+}
diff --git a/packages/nixos/system.nix b/packages/nixos/system.nix
index d11a336acc..553accc304 100644
--- a/packages/nixos/system.nix
+++ b/packages/nixos/system.nix
@@ -4,20 +4,24 @@
 {
   config,
   lib,
-  pkgs,
   ...
 }:
 
 {
   boot.loader.grub.enable = false;
-  boot.kernelPackages = pkgs.recurseIntoAttrs (pkgs.linuxPackagesFor pkgs.kernel-podvm-azure);
   boot.kernelParams = [
     "systemd.verity=yes"
     "selinux=0"
   ];
-  boot.supportedFilesystems = [ "erofs" ];
+  boot.supportedFilesystems = [
+    "erofs"
+    "vfat"
+  ];
   boot.initrd = {
-    supportedFilesystems = [ "erofs" ];
+    supportedFilesystems = [
+      "erofs"
+      "vfat"
+    ];
     availableKernelModules = [
       "dm_mod"
       "dm_verity"
diff --git a/tools/tdx-measure/main.go b/tools/tdx-measure/main.go
index b43f4db9d9..50f3bdb6a5 100644
--- a/tools/tdx-measure/main.go
+++ b/tools/tdx-measure/main.go
@@ -106,6 +106,10 @@ func newRtMrCmd() *cobra.Command {
 	if err := cmd.MarkFlagFilename("kernel"); err != nil {
 		panic(err)
 	}
+	cmd.Flags().StringP("initrd", "i", "initrd.zst", "path to initrd file")
+	if err := cmd.MarkFlagFilename("initrd"); err != nil {
+		panic(err)
+	}
 	cmd.Flags().StringP("cmdline", "c", "", "kernel command line")
 	return cmd
 }
@@ -136,8 +140,15 @@ func runRtMr(cmd *cobra.Command, args []string) error {
 		if err != nil {
 			return fmt.Errorf("can't read kernel file: %w", err)
 		}
-
-		digest, err = rtmr.CalcRtmr1(kernel)
+		initrdPath, err := cmd.Flags().GetString("initrd")
+		if err != nil {
+			return err
+		}
+		initrd, err := os.ReadFile(initrdPath)
+		if err != nil {
+			return fmt.Errorf("can't read initrd file: %w", err)
+		}
+		digest, err = rtmr.CalcRtmr1(kernel, initrd)
 		if err != nil {
 			return fmt.Errorf("can't calculate RTMR 1: %w", err)
 		}
@@ -146,7 +157,15 @@ func runRtMr(cmd *cobra.Command, args []string) error {
 		if err != nil {
 			return err
 		}
-		digest, err = rtmr.CalcRtmr2(cmdLine)
+		initrdPath, err := cmd.Flags().GetString("initrd")
+		if err != nil {
+			return err
+		}
+		initrd, err := os.ReadFile(initrdPath)
+		if err != nil {
+			return fmt.Errorf("can't read initrd file: %w", err)
+		}
+		digest, err = rtmr.CalcRtmr2(cmdLine, initrd)
 		if err != nil {
 			return fmt.Errorf("can't calculate RTMR 2: %w", err)
 		}
diff --git a/tools/tdx-measure/rtmr/rtmr.go b/tools/tdx-measure/rtmr/rtmr.go
index a123f29d9a..a6a3fb71a9 100644
--- a/tools/tdx-measure/rtmr/rtmr.go
+++ b/tools/tdx-measure/rtmr/rtmr.go
@@ -243,23 +243,33 @@ func CalcRtmr0(firmware []byte) ([48]byte, error) {
 }
 
 // CalcRtmr1 calculates RTMR[1] for the given kernel.
-func CalcRtmr1(kernelFile []byte) ([48]byte, error) {
+func CalcRtmr1(kernelFile, initrdFile []byte) ([48]byte, error) {
 	var rtmr Rtmr
-	kernelHashContent, err := hashKernel(kernelFile)
+
+	kernelHashContent, err := hashKernel(kernelFile, initrdFile)
 	if err != nil {
 		return [48]byte{}, fmt.Errorf("can't hash kernel: %w", err)
 	}
 	rtmr.hashAndExtend(kernelHashContent)
+
+	// https://github.com/tianocore/edk2/blob/0f3867fa6ef0553e26c42f7d71ff6bdb98429742/OvmfPkg/Tcg/TdTcg2Dxe/TdTcg2Dxe.c#L2155
 	rtmr.hashAndExtend([]byte("Calling EFI Application from Boot Option"))
+	// https://github.com/tianocore/edk2/blob/0f3867fa6ef0553e26c42f7d71ff6bdb98429742/OvmfPkg/Tcg/TdTcg2Dxe/TdTcg2Dxe.c#L2243
 	rtmr.hashAndExtend([]byte("Exit Boot Services Invocation"))
+	// https://github.com/tianocore/edk2/blob/0f3867fa6ef0553e26c42f7d71ff6bdb98429742/OvmfPkg/Tcg/TdTcg2Dxe/TdTcg2Dxe.c#L2254
 	rtmr.hashAndExtend([]byte("Exit Boot Services Returned with Success"))
 	return rtmr.Get(), nil
 }
 
-// CalcRtmr2 calculates RTMR[2] for the given kernel command line.
-func CalcRtmr2(cmdLine string) ([48]byte, error) {
+// CalcRtmr2 calculates RTMR[2] for the given kernel command line and initrd.
+func CalcRtmr2(cmdLine string, initrdFile []byte) ([48]byte, error) {
 	var rtmr Rtmr
 
+	// TODO(msanft): find out which component silently adds this string to the commandline.
+	// Suspects: QEMU-TDX, OVMF-TDX, Linux EFI Stub
+	cmdLine += " initrd=initrd"
+
+	// https://elixir.bootlin.com/linux/v6.11.8/source/drivers/firmware/efi/libstub/efi-stub-helper.c#L342
 	codepoints := utf16.Encode([]rune(cmdLine))
 	bytes := make([]byte, (len(codepoints)+1)*2)
 	for i, codepoint := range codepoints {
@@ -267,11 +277,14 @@ func CalcRtmr2(cmdLine string) ([48]byte, error) {
 	}
 	rtmr.hashAndExtend(bytes)
 
+	// https://elixir.bootlin.com/linux/v6.11.8/source/drivers/firmware/efi/libstub/efi-stub-helper.c#L625
+	rtmr.hashAndExtend(initrdFile)
+
 	return rtmr.Get(), nil
 }
 
-func hashKernel(kernelFile []byte) ([]byte, error) {
-	patchKernel(kernelFile)
+func hashKernel(kernelFile, initrdFile []byte) ([]byte, error) {
+	patchKernel(kernelFile, initrdFile)
 
 	kernel, err := authenticode.Parse(bytes.NewReader(kernelFile))
 	if err != nil {
@@ -281,7 +294,7 @@ func hashKernel(kernelFile []byte) ([]byte, error) {
 	return kernel.HashContent.Bytes(), nil
 }
 
-func patchKernel(kernelFile []byte) {
+func patchKernel(kernelFile, initrdFile []byte) {
 	// QEMU patches some header bytes in the kernel before loading it into memory.
 	// Sources:
 	// - https://gitlab.com/qemu-project/qemu/-/blob/28ae3179fc52d2e4d870b635c4a412aab99759e7/hw/i386/x86-common.c#L837
@@ -299,4 +312,19 @@ func patchKernel(kernelFile []byte) {
 	kernelFile[0x229] = 0x00
 	kernelFile[0x22A] = 0x02
 	kernelFile[0x22B] = 0x00
+
+	// https://github.com/qemu/qemu/blob/f48c205fb42be48e2e47b7e1cd9a2802e5ca17b0/hw/i386/x86.c#L1036
+	// Maximum size of the initrd as calculated by QEMU. Normally, this would be dependent on the VM
+	// memory size, but we have a QEMU patch that removes that fixes this to make RTMR1 reproducible.
+	// Our QEMU patch has a commented-out line to print this value upon start, so it's easy to find
+	// when updating QEMU, as the value might change on QEMU updates.
+	initrdMax := 0x7ffd7fff
+	initrdSize := len(initrdFile)
+	initrdAddr := (initrdMax - initrdSize) & ^4095
+
+	// https://github.com/qemu/qemu/blob/f48c205fb42be48e2e47b7e1cd9a2802e5ca17b0/hw/i386/x86.c#L1044
+	binary.LittleEndian.PutUint32(kernelFile[0x218:][:4], uint32(initrdAddr))
+
+	// https://github.com/qemu/qemu/blob/f48c205fb42be48e2e47b7e1cd9a2802e5ca17b0/hw/i386/x86.c#L1045
+	binary.LittleEndian.PutUint32(kernelFile[0x21C:][:4], uint32(initrdSize))
 }