diff --git a/src/cvm-image-rewriter/README.md b/src/cvm-image-rewriter/README.md
index 101a7f2..8eacfda 100644
--- a/src/cvm-image-rewriter/README.md
+++ b/src/cvm-image-rewriter/README.md
@@ -5,7 +5,7 @@ config, OVMF firmware etc.
 
 ## 1. Overview
 
-The confidential VM guest can be customized including follows:
+The confidential VM guest can be customized as follows:
 
 ![](/docs/cvm-customizations.png)
 
@@ -37,7 +37,7 @@ framework, and the whole flow was divided into three stages:
 
 ### 2.1 Existing Plugins
 
-There are following customization plugins in Pre-Stage providing customization to base image.
+There are following customization plugins in Plugins providing customization to base image.
 
 | Name | Descriptions | Required for CCNP deployment |
 | ---- | ------------ | ------------ |
@@ -46,28 +46,29 @@ There are following customization plugins in Pre-Stage providing customization t
 | 03-netplan | Customize the netplan.yaml | N |
 | 04-user-authkey | Add auth key for user login instead of password | N |
 | 05-readonly-data | Fix some file permission to ready-only | N |
-| 07-install-mvp-guest | Install MVP TDX guest kernel | Y |
-| 08-device-permission | Fix the permission for device node | Y |
-| 09-ccnp-uds-directory-permission | Fix the permission for CCNP UDS directory | Y |
+| 06-install-tdx-guest-kernel | Install MVP TDX guest kernel | Y |
+| 07-device-permission | Fix the permission for device node | Y |
+| 08-ccnp-uds-directory-permission | Fix the permission for CCNP UDS directory | Y |
 | 60-initrd-update | Update the initrd image | N |
+| 97-sample | plugin customization example | N |
 | 98-ima-enable-simple | Enable IMA (Integrity Measurement Architecture) feature | N |
 
 ### 2.2 Design a new plugin
 
-A plugin is put into the directory of [`pre-stage`](/src/cvm-image-rewriter/pre-stage/),
+A plugin is put into the directory of [`plugins`](/tools/cvm-image-rewriter/plugins/),
 with the number as directory name's prefix. So the execution of plugin will be
-dispatched according to number sequence for example `99-test` is the final one.
+dispatched according to number sequence for example `99-byebye` is the final one.
 
 A plugin includes several customization approaches:
 
-1. File override: all files under `<plugin directory>/files` will be copied the
-corresponding directory in target guest image.
-2. Pre-stage execution on the host: the `<plugin directory>/host_run.sh` will be
-executed before cloud-init stage
-3. cloud-init customization: please put the config yaml into `<plugin directory>/cloud-init/cloud-config`,
-and put the scripts to `<plugin directory>/cloud-init/x-shellscript`
+1. File override: all files under `<plugin directory>/files` will be copied into the
+corresponding directory in the target guest image.
+2. Pre-stage execution on the host: the `<plugin directory>/pre-stage/host_run.sh` will be
+executed before cloud-init stage.
+3. cloud-init customization: please put the config yaml in `<plugin directory>/cloud-init/cloud-config`,
+and put the scripts in `<plugin directory>/cloud-init/x-shellscript`.
 
-Please refer [the sample plugin](/src/cvm-image-rewriter/pre-stage/99-test/).
+Please refer to [the sample plugin](/tools/cvm-image-rewriter/plugins/97-sample/).
 
 ## 3. How to Run the tool
 
@@ -76,32 +77,32 @@ Please refer [the sample plugin](/src/cvm-image-rewriter/pre-stage/99-test/).
 1. This tool has been tested on `Ubuntu 22.04` and `Debian 10`. It is recommend to use
 `Ubuntu 22.04`.
 
-2. This tool can run on bare metal or virtual machine (with nest VM like `Intel VT-x`, detailed in [Section 3.4](#3.4-Run-in-Nested-VM-(Optional)))
+2. This tool can run on bare metal or within a virtual machine using nesting as detailed in [Section 3.4](#3.4-Run-in-Nested-VM-(Optional)).
 
-3. Please install following packages on Ubuntu/Debian:
+3. Please install the following packages on Ubuntu/Debian.
 
     ```
     sudo apt install qemu-utils guestfs-tools virtinst genisoimage libvirt-daemon-system libvirt-daemon
     ```
-    If `guestfs-tools` is not available in your distribution, you may need to install some additional packages on Debian:
+    If `guestfs-tools` is not available in your distribution, you may need to install some additional packages on Debian.
 
     ```
     sudo apt-get install guestfsd libguestfs-tools
     ```
 
-5. Ensure current login user is in the group of libvirt
+4. Ensure current login user is in the group of libvirt.
 
     ```
     sudo usermod -aG libvirt $USER
     ```
 
-6. Ensure read permission on `/boot/vmlinuz-$(uname-r)`.
+5. Ensure read permission on `/boot/vmlinuz-$(uname-r)`.
 
     ```
     sudo chmod o+r /boot/vmlinuz-*
     ```
 
-7. The version of cloud-init is required > 23.0, so if the host distro could not
+6. The version of cloud-init is required > 23.0, so if the host distro could not
 provide such cloud-init tool, you have to install it manually. For example, on a
 debian 10 system, the version of default cloud-init is 20.0. Please do following
 steps:
@@ -110,12 +111,12 @@ steps:
     sudo dpkg -i cloud-init_23.3.1-1_all.deb
     ```
 
-8. If it is running with `libvirt/virt-daemon` hypervisor, then:
+7. If it is running with `libvirt/virt-daemon` hypervisor, then:
 
   - In file `/etc/libvirt/qemu.conf`, make sure `user` and `group` is `root` or
     current user.
   - If need customize the connection URL, you can specify via `-s` like `-s /var/run/libvirt/libvirt-sock`,
-    please make sure current user belong to libvirt group via following commands:
+    please make sure the current user belongs to the libvirt group via the following commands:
     ```
     sudo usermod -aG libvirt $USER
     sudo systemctl daemon-reload
@@ -132,23 +133,26 @@ steps:
 
 The tool provides several plugins to customize the initial image. It will generate an `output.qcow2` under current directory.
 
-Before running the tool, please choose the plugins that are needed.You can skip any plugin by creating a file "NOT_RUN" under the plugin directory.
+Before running the tool, please choose the plugins that are needed.You can skip any plugin by creating a file "NOT_RUN" under the current directory.
 For example:
 
     ```
-    touch pre-stage/01-resize-image/NOT_RUN
+    touch plugins/01-resize-image/NOT_RUN
     ```
 
-If the guest image is used for CCNP deployment, it's recommended to run below plugin combination according to different initial guest image type.
+If the guest image is used for CCNP deployment, it's recommended to run the below plugin combination depending on which guest image type is used.
 Others are not required by CCNP and can be skipped.
-|  Base image | 01  | 02  | 03  | 04  | 05 | 07 | 08 | 09 | 60 | 98 |
+|  Base image | 01  | 02  | 03  | 04  | 05 | 06 | 07 | 08 | 60 | 98 |
 |---|---|---|---|---|---|---|---|---|---|---|
-|  Ubuntu base image | | | | | Y| | Y| Y| | |
+|  Ubuntu base image | | | | | | Y| Y| Y| | |
 | TD enlightened image | | | | | | | Y| Y| | |
 
 **NOTE:**
-  - TD enlightened image means the image already has TDX kernel. If not, plugin 05 is needed to install TDX kernel.
-  - Plugin 08 and 09 prepares device permission for CCNP deployment.
+  - All plugins need to be executed in numerical order.
+  - TD enlightened image means the image already has a TDX kernel. If not, plugin 06 is required to install a TDX kernel.
+  - Plugin 7 and Plugin 8 need to be executed before deploying CCNP to provide device permissions for CCNP.
+  - Plugin 60 requires copying or generating all files to the root directory first. When users customize plugins, please ensure that the plugin number with this requirement is placed before 60.
+  - Plugin 98 needs to be executed after all other plugins have completed. The number of the user-customized plugin must be before 98.
   - Other plugins are optional for CCNP deployment. 
 
 The tool supports parameters as below.
@@ -160,10 +164,10 @@ Required
 Optional
   -t <number of minutes>    Specify the timeout of rewriting, 3 minutes default,
                             If enabling IMA, recommend timeout >6 minutes
-  -s <connection socket>    Default is connection URI is qemu:///system,
+  -s <connection socket>    Default connection URI is qemu:///system,
                             if install libvirt, you can specify to "/var/run/libvirt/libvirt-sock"
                             then the corresponding URI is "qemu+unix:///system?socket=/var/run/libvirt/libvirt-sock"
-  -n                        Silence running for virt-install, no output
+  -n                        Silent running for virt-install with no output
   -h                        Show usage
 ```
 
@@ -175,7 +179,7 @@ $ ./run.sh -i <initial guest image> -t 10
 
 ### 3.3 Boot a VM
 
-After above tool is running successfully, you can boot a VM using the generated `output.qcow2` using `qemu-test.sh` or `virt-test.sh`.
+After above tool is running successfully, you can boot a VM using the generated `output.qcow2` using `qemu-test.sh` or `start-virt.sh`.
 
 - Boot TD or normal VM using `qemu-test.sh`.
   ```
@@ -187,20 +191,17 @@ After above tool is running successfully, you can boot a VM using the generated
 
   For example:
   ```
-  # Boot a TDVM with TDX 1.0 Stack
-  $ sudo ./qemu-test.sh -i output.qcow2 -t td-1.0 -p <qemu monitor port> -f <ssh_forward port>
-
-  # Boot a TDVM with TDX 1.5 Stack
-  $ sudo ./qemu-test.sh -i output.qcow2 -t td-1.5 -p <qemu monitor port> -f <ssh_forward port>
+  # Boot a TD
+  $ sudo ./qemu-test.sh -i output.qcow2 -t td -p <qemu monitor port> -f <ssh_forward port>
 
   # Boot a normal VM
-  $ sudo ./qemu-test.sh -i output.qcow2 -t legacy -p <qemu monitor port> -f <ssh_forward port>
+  $ sudo ./qemu-test.sh -i output.qcow2 -p <qemu monitor port> -f <ssh_forward port>
   ```
-- Boot TD using `virt-test.sh`.
+- Boot TD using `start-virt.sh`.
 
   ```
-  $ sudo ./virt-test.sh -h
-  Usage: virt-test.sh [OPTION]...
+  $ sudo ./start-virt.sh -h
+  Usage: start-virt.sh [OPTION]...
     -i <guest image file>     Default is tdx-guest-ubuntu22.04.qcow2 under current directory
     -n <guest name>           Name of TD guest
     -t <template file>        Default is ./tdx-libvirt-ubuntu-host.xml.template
@@ -224,7 +225,7 @@ This tool can also be run in a guest VM on the host, in case that users need to
 
 Given that some plugins will consume more time in a low-performance guest VM, it is recommended to enable nested virtualization feature on the host.
 
-Firstly, check if the nested virtualization is enabled. If the file `/sys/module/kvm_intel/parameters/nested` show `Y` or `1`, it indicates that the feature is enabled. 
+First, check if the nested virtualization is enabled. If the file `/sys/module/kvm_intel/parameters/nested` show `Y` or `1`, it indicates that the feature is enabled. 
 
 ```
 cat /sys/module/kvm_intel/parameters/nested
diff --git a/src/cvm-image-rewriter/plugins/01-resize-image/README.md b/src/cvm-image-rewriter/plugins/01-resize-image/README.md
new file mode 100644
index 0000000..7b2cc68
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/01-resize-image/README.md
@@ -0,0 +1,9 @@
+# Resize the image
+
+This plugin is used to extend the guest image size to given value from the
+environment variable `${GUEST_SIZE}`.
+
+If `${GUEST_SIZE}` is not specified like below, then this plugin will be skipped.
+```
+export GUEST_SIZE=50G
+```
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/01-resize-image/host_run.sh b/src/cvm-image-rewriter/plugins/01-resize-image/pre-stage/host_run.sh
similarity index 81%
rename from src/cvm-image-rewriter/pre-stage/01-resize-image/host_run.sh
rename to src/cvm-image-rewriter/plugins/01-resize-image/pre-stage/host_run.sh
index 1ededbf..2bd5e78 100755
--- a/src/cvm-image-rewriter/pre-stage/01-resize-image/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/01-resize-image/pre-stage/host_run.sh
@@ -1,9 +1,10 @@
 #!/bin/bash
 
 CURR_DIR=$(dirname "$(readlink -f "$0")")
-
+TOP_DIR="${CURR_DIR}/../../../"
+SCRIPTS_DIR="${TOP_DIR}/scripts"
 # shellcheck disable=SC1091
-source "${CURR_DIR}/../../scripts/common.sh"
+source "${SCRIPTS_DIR}/common.sh"
 
 info "Guest Image is at ${GUEST_IMG}..."
 
diff --git a/src/cvm-image-rewriter/plugins/02-motd-welcome/README.md b/src/cvm-image-rewriter/plugins/02-motd-welcome/README.md
new file mode 100644
index 0000000..f4e73d9
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/02-motd-welcome/README.md
@@ -0,0 +1,3 @@
+# Motd welcome
+
+This plugin is used to set the information in `/etc/motd`, which will be displayed after successful login. Users can customize the welcome information by updating the content of `files/etc/motd`.
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/02-motd-welcome/files/etc/motd b/src/cvm-image-rewriter/plugins/02-motd-welcome/files/etc/motd
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/02-motd-welcome/files/etc/motd
rename to src/cvm-image-rewriter/plugins/02-motd-welcome/files/etc/motd
diff --git a/src/cvm-image-rewriter/plugins/03-netplan/README.md b/src/cvm-image-rewriter/plugins/03-netplan/README.md
new file mode 100644
index 0000000..de68684
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/03-netplan/README.md
@@ -0,0 +1,3 @@
+# Netplan
+
+This plugin is used to add network configuration file `netplan.yaml` in the `/etc/netplan/` directory, which will configure the network for the guest image. Users can customize `netplan.yaml` by updating the contents of `files/etc/netplan/netplan.yaml`
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/03-netplan/files/etc/netplan/netplan.yaml b/src/cvm-image-rewriter/plugins/03-netplan/files/etc/netplan/netplan.yaml
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/03-netplan/files/etc/netplan/netplan.yaml
rename to src/cvm-image-rewriter/plugins/03-netplan/files/etc/netplan/netplan.yaml
diff --git a/src/cvm-image-rewriter/plugins/04-user-authkey/README.md b/src/cvm-image-rewriter/plugins/04-user-authkey/README.md
new file mode 100644
index 0000000..68054b9
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/04-user-authkey/README.md
@@ -0,0 +1,14 @@
+# User authkey
+
+This plugin is used to set the SSH login user and public key using environment variables `${CVM_USER}` and `${CVM_AUTH_KEY}`.
+
+The default value of `${CVM_USER}` is "cvm", and users can customize it as shown below.
+```
+export CVM_USER=<user>
+```
+
+The `${CVM_AUTH_KEY}` has no default value, users need to set it themselves. If `${CVM_AUTH_KEY}` is not specified like below, this plugin will be skipped.
+
+```
+export CVM_AUTH_KEY=<ssh public key>
+```
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/05-readonly-data/clean_up.sh b/src/cvm-image-rewriter/plugins/04-user-authkey/post-stage/clean_up.sh
old mode 100755
new mode 100644
similarity index 78%
rename from src/cvm-image-rewriter/pre-stage/05-readonly-data/clean_up.sh
rename to src/cvm-image-rewriter/plugins/04-user-authkey/post-stage/clean_up.sh
index 6d6dd13..f569940
--- a/src/cvm-image-rewriter/pre-stage/05-readonly-data/clean_up.sh
+++ b/src/cvm-image-rewriter/plugins/04-user-authkey/post-stage/clean_up.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 
 DIR=$(dirname "$(readlink -f "$0")")
-CLD_DIR="$DIR/cloud-init"
+CLD_DIR="$DIR/../cloud-init"
 
 if [[ -d "$CLD_DIR" ]]; then
     rm -rf "$CLD_DIR"
diff --git a/src/cvm-image-rewriter/pre-stage/04-user-authkey/host_run.sh b/src/cvm-image-rewriter/plugins/04-user-authkey/pre-stage/host_run.sh
similarity index 73%
rename from src/cvm-image-rewriter/pre-stage/04-user-authkey/host_run.sh
rename to src/cvm-image-rewriter/plugins/04-user-authkey/pre-stage/host_run.sh
index 2dcaebc..47fcf81 100755
--- a/src/cvm-image-rewriter/pre-stage/04-user-authkey/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/04-user-authkey/pre-stage/host_run.sh
@@ -4,21 +4,21 @@
 pushd "$(dirname "$(readlink -f "$0")")" || exit 0
 
 # shellcheck disable=SC1091
-source ../../scripts/common.sh
+source ../../../scripts/common.sh
 
 # Check CVM_USER, CVM_AUTH_KEY
 CVM_USER="${CVM_USER:-cvm}"
 info "Config user: $CVM_USER"
 
 if [[ -z "$CVM_AUTH_KEY" ]]; then
-    warn "CVM_AUTH_KEY is not set, skip"
+    warn "SKIP: CVM_AUTH_KEY is not defined via environment variable 'CVM_AUTH_KEY'"
     exit 0
 fi
 info "ssh pubkey: $CVM_AUTH_KEY"
 
 # Generate cloud-config
-mkdir -p cloud-init/cloud-config/
-cat > cloud-init/cloud-config/04-user-authkey.yaml << EOL
+mkdir -p ../cloud-init/cloud-config/
+cat > ../cloud-init/cloud-config/04-user-authkey.yaml << EOL
 #cloud-config
 merge_how:
   - name: list
diff --git a/src/cvm-image-rewriter/plugins/05-readonly-data/README.md b/src/cvm-image-rewriter/plugins/05-readonly-data/README.md
new file mode 100644
index 0000000..e02d67d
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/05-readonly-data/README.md
@@ -0,0 +1,3 @@
+# Readonly data
+
+This plugin is used to fix some file permissions to read-only. Users can specify the names of files and directories that need to be fixed in the `pre-stage/file_list`.
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/05-readonly-data/files/etc/readonly_file_demo b/src/cvm-image-rewriter/plugins/05-readonly-data/files/etc/readonly_file_demo
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/05-readonly-data/files/etc/readonly_file_demo
rename to src/cvm-image-rewriter/plugins/05-readonly-data/files/etc/readonly_file_demo
diff --git a/src/cvm-image-rewriter/plugins/05-readonly-data/post-stage/clean_up.sh b/src/cvm-image-rewriter/plugins/05-readonly-data/post-stage/clean_up.sh
new file mode 100755
index 0000000..f569940
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/05-readonly-data/post-stage/clean_up.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+
+DIR=$(dirname "$(readlink -f "$0")")
+CLD_DIR="$DIR/../cloud-init"
+
+if [[ -d "$CLD_DIR" ]]; then
+    rm -rf "$CLD_DIR"
+fi
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/05-readonly-data/file_list b/src/cvm-image-rewriter/plugins/05-readonly-data/pre-stage/file_list
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/05-readonly-data/file_list
rename to src/cvm-image-rewriter/plugins/05-readonly-data/pre-stage/file_list
diff --git a/src/cvm-image-rewriter/pre-stage/05-readonly-data/host_run.sh b/src/cvm-image-rewriter/plugins/05-readonly-data/pre-stage/host_run.sh
similarity index 85%
rename from src/cvm-image-rewriter/pre-stage/05-readonly-data/host_run.sh
rename to src/cvm-image-rewriter/plugins/05-readonly-data/pre-stage/host_run.sh
index f67fc4f..2444b56 100755
--- a/src/cvm-image-rewriter/pre-stage/05-readonly-data/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/05-readonly-data/pre-stage/host_run.sh
@@ -3,7 +3,7 @@
 DIR=$(dirname "$(readlink -f "$0")")
 FILE_LIST="$DIR/file_list"
 CLD_SH_READONLY_FILE="01-file-readonly.sh"
-CLD_SH="$DIR/cloud-init/x-shellscript/$CLD_SH_READONLY_FILE"
+CLD_SH="$DIR/../cloud-init/x-shellscript/$CLD_SH_READONLY_FILE"
 CLD_SH_TEMPLATE=""
 injects=""
 
@@ -25,6 +25,6 @@ while IFS= read -r line || [ -n "$line" ]; do
     fi
 done <"$FILE_LIST"
 
-mkdir -p "$DIR/cloud-init/x-shellscript"
+mkdir -p "$DIR/../cloud-init/x-shellscript"
 # shellcheck disable=SC2001
 echo "$CLD_SH_TEMPLATE" | sed -e "s@PLACEHOLDER@$injects@g" > "$CLD_SH"
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/README.md b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/README.md
new file mode 100644
index 0000000..99cc848
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/README.md
@@ -0,0 +1,22 @@
+# Install TDX guest kernel
+
+This plugin is used to install a TDX guest kernel from a given local repository.
+
+# Prerequisite
+
+Prepare the local repository and confirm that there are Debian packages related to the TDX kernel in the `/jammy/amd64/` directory of this repository. It is recommended to place this local repository in the `pre-stage/artifacts/` directory.
+```
+mkdir -p ./pre-stage/artifacts
+mv <your guest repo> ./pre-stage/artifacts/
+```
+
+Set `${CVM_TDX_GUEST_REPO}` to the repository absolute path, or this plugin will be skipped. 
+```
+export CVM_TDX_GUEST_REPO=$(pwd)/pre-stage/artifacts/<your guest repo>
+
+# Or
+export CVM_TDX_GUEST_REPO=<your local guest repo>
+```
+
+
+_NOTE: IF the original image is smaller than 1.5G, please set the environment variable GUEST\_SIZE to a larger value, as this will result in the execution of plugin 01._
diff --git a/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/post-stage/clean_up.sh b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/post-stage/clean_up.sh
new file mode 100755
index 0000000..f569940
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/post-stage/clean_up.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+
+DIR=$(dirname "$(readlink -f "$0")")
+CLD_DIR="$DIR/../cloud-init"
+
+if [[ -d "$CLD_DIR" ]]; then
+    rm -rf "$CLD_DIR"
+fi
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/artifacts/.placeholder b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/pre-stage/artifacts/.placeholder
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/artifacts/.placeholder
rename to src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/pre-stage/artifacts/.placeholder
diff --git a/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/pre-stage/host_run.sh b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/pre-stage/host_run.sh
new file mode 100755
index 0000000..847bfd1
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/06-install-tdx-guest-kernel/pre-stage/host_run.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+
+CURR_DIR=$(dirname "$(readlink -f "$0")")
+TOP_DIR="${CURR_DIR}/../../../"
+SCRIPTS_DIR="${TOP_DIR}/scripts"
+# shellcheck disable=SC1091
+source "${SCRIPTS_DIR}/common.sh"
+ARTIFACTS_GUEST=/srv
+
+# check environment variable 'CVM_TDX_GUEST_REPO'
+if [[ -z "$CVM_TDX_GUEST_REPO" ]]; then
+    warn "SKIP: TDX guest repo is not defined via environment variable 'CVM_TDX_GUEST_REPO' "
+    exit 0
+fi
+
+info "TDX Guest Repo is at ${CVM_TDX_GUEST_REPO}..."
+
+# check if the repo exists
+if [[ ! -d "$CVM_TDX_GUEST_REPO" ]]; then
+    warn "SKIP: TDX guest local repo CVM_TDX_GUEST_REPO does not exist."
+    exit 0
+fi
+
+# Check if it is a valid TDX repo
+if ! compgen -G "$CVM_TDX_GUEST_REPO/jammy/amd64/linux-image-*mvp*.deb"; then
+    warn "SKIP: $CVM_TDX_GUEST_REPO is invalid."
+    exit 0
+fi
+
+info "TDX guest local repo $CVM_TDX_GUEST_REPO check passed"
+
+# Copy TDX local repo from host to guest
+virt-copy-in -a "${GUEST_IMG}" "$CVM_TDX_GUEST_REPO" "$ARTIFACTS_GUEST"
+ok "TDX guest local repo $CVM_TDX_GUEST_REPO copied to guest $ARTIFACTS_GUEST"
+
+# Generate cloud-config
+mkdir -p "${CURR_DIR}/../cloud-init/x-shellscript/"
+cat > "${CURR_DIR}/../cloud-init/x-shellscript/07-install-tdx-guest-kernel.sh" << EOL
+#!/bin/bash
+
+PACKAGE_DIR=""$ARTIFACTS_GUEST"/$(basename "$CVM_TDX_GUEST_REPO")/jammy/"
+pushd \$PACKAGE_DIR || exit 0
+apt install ./amd64/linux-image-unsigned-*.deb ./amd64/linux-modules-*.deb \
+        ./amd64/linux-headers-*.deb ./all/linux-headers-*.deb --allow-downgrades -y
+popd || exit 0
+EOL
+
+ok "Cloud config cloud-init/x-shellscript/07-install-tdx-guest-kernel.sh generated"
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/plugins/07-device-permission/README.md b/src/cvm-image-rewriter/plugins/07-device-permission/README.md
new file mode 100644
index 0000000..4275032
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/07-device-permission/README.md
@@ -0,0 +1,3 @@
+# Device permission
+
+This plugin is used to setup udev rules for CCNP device plugin. It is typically not required for users to customize unless additional udev rules are needed.
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/08-device-permission/files/etc/udev/rules.d/90-tdx.rules b/src/cvm-image-rewriter/plugins/07-device-permission/files/etc/udev/rules.d/90-tdx.rules
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/08-device-permission/files/etc/udev/rules.d/90-tdx.rules
rename to src/cvm-image-rewriter/plugins/07-device-permission/files/etc/udev/rules.d/90-tdx.rules
diff --git a/src/cvm-image-rewriter/plugins/08-ccnp-uds-directory-permission/README.md b/src/cvm-image-rewriter/plugins/08-ccnp-uds-directory-permission/README.md
new file mode 100644
index 0000000..c2d08c3
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/08-ccnp-uds-directory-permission/README.md
@@ -0,0 +1,3 @@
+# CCNP UDS directory permission
+
+This plugin is used to prepare shared unix domain socket directories for CCNP. It is typically not required for users to customize unless additional Unix domain socket directories are needed.
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/09-ccnp-uds-directory-permission/files/usr/lib/tmpfiles.d/ccnp.conf b/src/cvm-image-rewriter/plugins/08-ccnp-uds-directory-permission/files/usr/lib/tmpfiles.d/ccnp.conf
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/09-ccnp-uds-directory-permission/files/usr/lib/tmpfiles.d/ccnp.conf
rename to src/cvm-image-rewriter/plugins/08-ccnp-uds-directory-permission/files/usr/lib/tmpfiles.d/ccnp.conf
diff --git a/src/cvm-image-rewriter/plugins/60-initrd-update/README.md b/src/cvm-image-rewriter/plugins/60-initrd-update/README.md
new file mode 100644
index 0000000..04fc2e4
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/60-initrd-update/README.md
@@ -0,0 +1,3 @@
+# Initrd update
+
+This plugins is used to update the initrd image. To change the initrd image, place the necessary files in the `files/` directory. The plugin will copy these files to the initramfs.
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/60-initrd-update/files/opt/example.txt b/src/cvm-image-rewriter/plugins/60-initrd-update/files/opt/example.txt
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/60-initrd-update/files/opt/example.txt
rename to src/cvm-image-rewriter/plugins/60-initrd-update/files/opt/example.txt
diff --git a/src/cvm-image-rewriter/pre-stage/60-initrd-update/clean_up.sh b/src/cvm-image-rewriter/plugins/60-initrd-update/post-stage/clean_up.sh
similarity index 78%
rename from src/cvm-image-rewriter/pre-stage/60-initrd-update/clean_up.sh
rename to src/cvm-image-rewriter/plugins/60-initrd-update/post-stage/clean_up.sh
index d6ae12f..203f5e8 100755
--- a/src/cvm-image-rewriter/pre-stage/60-initrd-update/clean_up.sh
+++ b/src/cvm-image-rewriter/plugins/60-initrd-update/post-stage/clean_up.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 
 DIR=$(dirname "$(readlink -f "$0")")
-ETC_DIR="$DIR/files/etc"
+ETC_DIR="$DIR/../files/etc"
 
 if [[ -d "$ETC_DIR" ]]; then
     rm -rf "$ETC_DIR"
diff --git a/src/cvm-image-rewriter/pre-stage/60-initrd-update/host_run.sh b/src/cvm-image-rewriter/plugins/60-initrd-update/pre-stage/host_run.sh
similarity index 81%
rename from src/cvm-image-rewriter/pre-stage/60-initrd-update/host_run.sh
rename to src/cvm-image-rewriter/plugins/60-initrd-update/pre-stage/host_run.sh
index 3f47f9a..94d8158 100755
--- a/src/cvm-image-rewriter/pre-stage/60-initrd-update/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/60-initrd-update/pre-stage/host_run.sh
@@ -3,7 +3,7 @@
 DIR=$(dirname "$(readlink -f "$0")")
 TEMPLATE="#!/bin/sh\n\n. /usr/share/initramfs-tools/hook-functions\n"
 
-HOOKS_DIR="$DIR/files/etc/initramfs-tools/hooks"
+HOOKS_DIR="$DIR/../files/etc/initramfs-tools/hooks"
 SCRIPT_NAME=initrd-custom-update.sh
 SCRIPT_PATH=$HOOKS_DIR/$SCRIPT_NAME
 
@@ -11,7 +11,7 @@ mkdir -p "$HOOKS_DIR"
 echo -e "$TEMPLATE" > "$SCRIPT_PATH"
 chmod a+x "$SCRIPT_PATH"
 
-mapfile -t files < <(find "$DIR/files" -type f)
+mapfile -t files < <(find "$DIR/../files" -type f)
 for f in "${files[@]}"
 do
     if [[ $f == *$SCRIPT_NAME ]]; then
diff --git a/src/cvm-image-rewriter/plugins/97-sample/README.md b/src/cvm-image-rewriter/plugins/97-sample/README.md
new file mode 100644
index 0000000..2285114
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/97-sample/README.md
@@ -0,0 +1,16 @@
+# Sample
+
+This is a sample plugin to show the structure of the plugin and how to customize it.
+
+Example Output:
+```
+# output of the cloud-init
+=========== example for customized x-shellscript ===========
+
+#  output of the pre-stage
+pre-stage host_run "haha"
+
+# output of the post-stage
+post-stage host_run "haha"
+post-stage clean_up "haha"
+```
diff --git a/src/cvm-image-rewriter/pre-stage/99-test/cloud-init/cloud-config/99-example.yaml b/src/cvm-image-rewriter/plugins/97-sample/cloud-init/cloud-config/99-example.yaml
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/99-test/cloud-init/cloud-config/99-example.yaml
rename to src/cvm-image-rewriter/plugins/97-sample/cloud-init/cloud-config/99-example.yaml
diff --git a/src/cvm-image-rewriter/pre-stage/99-test/cloud-init/x-shellscript/02-ima-register-file-hash.sh b/src/cvm-image-rewriter/plugins/97-sample/cloud-init/x-shellscript/02-ima-register-file-hash.sh
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/99-test/cloud-init/x-shellscript/02-ima-register-file-hash.sh
rename to src/cvm-image-rewriter/plugins/97-sample/cloud-init/x-shellscript/02-ima-register-file-hash.sh
diff --git a/src/cvm-image-rewriter/pre-stage/99-test/files/etc/test b/src/cvm-image-rewriter/plugins/97-sample/files/etc/test
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/99-test/files/etc/test
rename to src/cvm-image-rewriter/plugins/97-sample/files/etc/test
diff --git a/src/cvm-image-rewriter/plugins/97-sample/post-stage/clean_up.sh b/src/cvm-image-rewriter/plugins/97-sample/post-stage/clean_up.sh
new file mode 100755
index 0000000..8c0c128
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/97-sample/post-stage/clean_up.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+
+echo "post-stage clean_up \"haha\""
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/plugins/97-sample/post-stage/host_run.sh b/src/cvm-image-rewriter/plugins/97-sample/post-stage/host_run.sh
new file mode 100755
index 0000000..d5c5dc1
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/97-sample/post-stage/host_run.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+
+echo "post-stage host_run \"haha\""
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/plugins/97-sample/pre-stage/host_run.sh b/src/cvm-image-rewriter/plugins/97-sample/pre-stage/host_run.sh
new file mode 100755
index 0000000..bf84ffe
--- /dev/null
+++ b/src/cvm-image-rewriter/plugins/97-sample/pre-stage/host_run.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+
+echo "pre-stage host_run \"haha\" "
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/README.md b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/README.md
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/README.md
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/README.md
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/cloud-init/x-shellscript/.placehoder b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/cloud-init/x-shellscript/.placehoder
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/cloud-init/x-shellscript/.placehoder
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/cloud-init/x-shellscript/.placehoder
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/files/etc/ima/ima-policy b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/files/etc/ima/ima-policy
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/files/etc/ima/ima-policy
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/files/etc/ima/ima-policy
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/clean_up.sh b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/post-stage/clean_up.sh
similarity index 69%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/clean_up.sh
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/post-stage/clean_up.sh
index b3f3e20..35a3b03 100755
--- a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/clean_up.sh
+++ b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/post-stage/clean_up.sh
@@ -2,7 +2,7 @@
 
 DIR=$(dirname "$(readlink -f "$0")")
 CLD_SH_REGISTER_FILE_HASH="01-ima-register-file-hash.sh"
-CLD_SH="$DIR/cloud-init/x-shellscript/$CLD_SH_REGISTER_FILE_HASH"
+CLD_SH="$DIR/../cloud-init/x-shellscript/$CLD_SH_REGISTER_FILE_HASH"
 
 if [[ -f "$CLD_SH" ]]; then
     rm "$CLD_SH"
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/file_list b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/file_list
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/file_list
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/file_list
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/guest_enable_ima_fix.sh b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/guest_enable_ima_fix.sh
similarity index 100%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/guest_enable_ima_fix.sh
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/guest_enable_ima_fix.sh
diff --git a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/host_run.sh b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/host_run.sh
similarity index 95%
rename from src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/host_run.sh
rename to src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/host_run.sh
index 98a144d..9740892 100755
--- a/src/cvm-image-rewriter/pre-stage/98-ima-enable-simple/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/98-ima-enable-simple/pre-stage/host_run.sh
@@ -3,7 +3,7 @@
 DIR=$(dirname "$(readlink -f "$0")")
 FILE_LIST="$DIR/file_list"
 CLD_SH_REGISTER_FILE_HASH="01-ima-register-file-hash.sh"
-CLD_SH="$DIR/cloud-init/x-shellscript/$CLD_SH_REGISTER_FILE_HASH"
+CLD_SH="$DIR/../cloud-init/x-shellscript/$CLD_SH_REGISTER_FILE_HASH"
 CLD_SH_TEMPLATE=""
 injects=""
 
diff --git a/src/cvm-image-rewriter/post-stage/99-byebye/host_run.sh b/src/cvm-image-rewriter/plugins/99-byebye/post-stage/host_run.sh
similarity index 86%
rename from src/cvm-image-rewriter/post-stage/99-byebye/host_run.sh
rename to src/cvm-image-rewriter/plugins/99-byebye/post-stage/host_run.sh
index 15d0ef3..aa67156 100755
--- a/src/cvm-image-rewriter/post-stage/99-byebye/host_run.sh
+++ b/src/cvm-image-rewriter/plugins/99-byebye/post-stage/host_run.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 
 CURR_DIR=$(dirname "$(readlink -f "$0")")
-TOP_DIR="${CURR_DIR}/../../"
+TOP_DIR="${CURR_DIR}/../../../"
 SCRIPTS_DIR="${TOP_DIR}/scripts"
 
 # shellcheck disable=SC1091
diff --git a/src/cvm-image-rewriter/post-stage/README.md b/src/cvm-image-rewriter/post-stage/README.md
deleted file mode 100644
index a1b0ef6..0000000
--- a/src/cvm-image-rewriter/post-stage/README.md
+++ /dev/null
@@ -1 +0,0 @@
-# Post stage after running cloud-init
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/01-resize-image/README.md b/src/cvm-image-rewriter/pre-stage/01-resize-image/README.md
deleted file mode 100644
index e05028e..0000000
--- a/src/cvm-image-rewriter/pre-stage/01-resize-image/README.md
+++ /dev/null
@@ -1,8 +0,0 @@
-# Resize the image
-
-This plugin is used to extend the guest image size to given value from the
-environment variable ${GUEST_SIZE}.
-
-If ${GUEST_SIZE} is not specified like below, then this plugin will be skipped.
-
-export GUEST_SIZE=50G
diff --git a/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/README.md b/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/README.md
deleted file mode 100644
index f4e7cbc..0000000
--- a/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/README.md
+++ /dev/null
@@ -1,17 +0,0 @@
-# Install MVP TDX guest
-
-This plugin is used to install MVP TDX guest kernel from a given local repo.
-
-## Prerequisite
-- Please put MVP guest repo into ./artifacts
-- Set CVM_MVP_GUEST_REPO to the repo relative path, for example 2023ww45/mvp-tdx-stack-guest-ubuntu-22.04, guest_repo
-- If the original image is smaller then 1.5G, please also set the environment variable GUEST_SIZE larger.
-
-## Example output
-
-```
-CVM_MVP_GUEST_REPO: 2023ww45/mvp-tdx-stack-guest-ubuntu-22.04
-MVP guest local repo ./artifacts/2023ww45/mvp-tdx-stack-guest-ubuntu-22.04 check passed
-SUCCESS: MVP guest local repo ./artifacts/2023ww45/mvp-tdx-stack-guest-ubuntu-22.04 copied to guest /srv
-SUCCESS: Cloud config cloud-init/x-shellscript/07-install-mvp-guest.sh generated
-```
diff --git a/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/host_run.sh b/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/host_run.sh
deleted file mode 100755
index c1bab85..0000000
--- a/src/cvm-image-rewriter/pre-stage/07-install-mvp-guest/host_run.sh
+++ /dev/null
@@ -1,50 +0,0 @@
-#!/bin/bash
-
-# Go to this dir
-pushd "$(dirname "$(readlink -f "$0")")" || exit 0
-
-# shellcheck disable=SC1091
-source ../../scripts/common.sh
-ARTIFACTS_HOST=./artifacts
-ARTIFACTS_GUEST=/srv
-
-# CVM_MVP_GUEST_REPO examples: 2023ww45/mvp-tdx-stack-guest-ubuntu-22.04, guest_repo
-if [[ -z "$CVM_MVP_GUEST_REPO" ]]; then
-    warn "CVM_MVP_GUEST_REPO is not set, skip"
-    warn "Please put MVP guest repo into $ARTIFACTS_HOST"
-    warn "Then set CVM_MVP_GUEST_REPO to the repo relative path"
-    exit 0
-fi
-info "CVM_MVP_GUEST_REPO: $CVM_MVP_GUEST_REPO"
-
-# Check if the local repo exists
-MVP_GUEST_REPO_LOCAL="$ARTIFACTS_HOST/$CVM_MVP_GUEST_REPO"
-if [[ ! -d "$MVP_GUEST_REPO_LOCAL" ]]; then
-    warn "MVP guest local repo $MVP_GUEST_REPO_LOCAL does not exist, skip"
-    exit 0
-fi
-# Check if it is a valid MVP repo
-if ! compgen -G "$MVP_GUEST_REPO_LOCAL/jammy/amd64/linux-image-*mvp*.deb"; then
-    warn "$MVP_GUEST_REPO_LOCAL is invalid, skip"
-    exit 0
-fi
-info "MVP guest local repo $MVP_GUEST_REPO_LOCAL check passed"
-
-# Copy MVP local repo from host to guest
-virt-copy-in -a "${GUEST_IMG}" "$MVP_GUEST_REPO_LOCAL" "$ARTIFACTS_GUEST"
-ok "MVP guest local repo $MVP_GUEST_REPO_LOCAL copied to guest $ARTIFACTS_GUEST"
-
-# Generate cloud-config
-mkdir -p cloud-init/x-shellscript/
-cat > cloud-init/x-shellscript/07-install-mvp-guest.sh << EOL
-#!/bin/bash
-
-PACKAGE_DIR="$ARTIFACTS_GUEST/$(basename "$CVM_MVP_GUEST_REPO")/jammy/"
-pushd \$PACKAGE_DIR || exit 0
-apt install ./amd64/linux-image-unsigned-*.deb ./amd64/linux-modules-*.deb \
-        ./amd64/linux-headers-*.deb ./all/linux-headers-*.deb --allow-downgrades -y
-popd || exit 0
-EOL
-ok "Cloud config cloud-init/x-shellscript/07-install-mvp-guest.sh generated"
-
-popd || exit 0
diff --git a/src/cvm-image-rewriter/pre-stage/99-test/host_run.sh b/src/cvm-image-rewriter/pre-stage/99-test/host_run.sh
deleted file mode 100755
index a09d0fc..0000000
--- a/src/cvm-image-rewriter/pre-stage/99-test/host_run.sh
+++ /dev/null
@@ -1,3 +0,0 @@
-#!/bin/bash
-
-echo "haha"
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/pre-stage/README.md b/src/cvm-image-rewriter/pre-stage/README.md
deleted file mode 100644
index c9e4b2b..0000000
--- a/src/cvm-image-rewriter/pre-stage/README.md
+++ /dev/null
@@ -1 +0,0 @@
-# Pre-stage before running cloud-init
\ No newline at end of file
diff --git a/src/cvm-image-rewriter/qemu-test.sh b/src/cvm-image-rewriter/qemu-test.sh
index f30e4fa..c5e8ce6 100755
--- a/src/cvm-image-rewriter/qemu-test.sh
+++ b/src/cvm-image-rewriter/qemu-test.sh
@@ -41,7 +41,6 @@ CPUS=1
 MEM=4G
 SGX_EPC_SIZE=64M
 
-# Installed from the package of intel-mvp-tdx-tdvf
 OVMF="/usr/share/qemu/OVMF.fd"
 GUEST_IMG=""
 DEFAULT_GUEST_IMG="${CURR_DIR}/output.qcow2"
@@ -52,10 +51,7 @@ BOOT_TYPE="direct"
 DEBUG=false
 USE_VSOCK=false
 USE_SERIAL_CONSOLE=false
-FORWARD_PORT=10026
-MONITOR_PORT=9001
 ROOT_PARTITION="/dev/vda1"
-#ROOT_PARTITION="/dev/vda2"
 KERNEL_CMD_NON_TD="root=${ROOT_PARTITION} rw console=hvc0"
 KERNEL_CMD_TD="${KERNEL_CMD_NON_TD}"
 MAC_ADDR=""
@@ -63,6 +59,10 @@ QUOTE_TYPE=""
 NET_CIDR="10.0.2.0/24"
 DHCP_START="10.0.2.15"
 
+# Generate random ports to avoid conflict with other TDs
+FORWARD_PORT=$((RANDOM % 200 + 10026))
+MONITOR_PORT=$((RANDOM % 200 + 9001))
+
 # Just log message of serial into file without input
 HVC_CONSOLE="-chardev stdio,id=mux,mux=on,logfile=/tmp/vm_log_$(date +"%FT%H%M").log \
              -device virtio-serial,romfile= \
@@ -79,9 +79,9 @@ QEMU_CMD="${QEMU_EXEC} -accel kvm \
           -name process=tdxvm,debug-threads=on \
           -m $MEM -vga none \
           -monitor pty \
-          -no-hpet -nodefaults"
+          -nodefaults"
 PARAM_CPU=" -cpu host,-kvm-steal-time,pmu=off"
-PARAM_MACHINE=" -machine q35"
+PARAM_MACHINE=" -machine q35,hpet=off"
 
 usage() {
     cat << EOM
@@ -223,7 +223,7 @@ process_args() {
                 PARAM_CPU+=",tsc-freq=1000000000"
             fi
             # Note: "pic=no" could only be used in TD mode but not for non-TD mode
-            PARAM_MACHINE+=",kernel_irqchip=split,confidential-guest-support=tdx"
+            PARAM_MACHINE+=",kernel_irqchip=split,memory-encryption=tdx,memory-backend=ram1"
             QEMU_CMD+=" -bios ${OVMF}"
             QEMU_CMD+=" -object tdx-guest,sept-ve-disable=on,id=tdx"
             if [[ ${QUOTE_TYPE} == "tdvmcall" ]]; then
@@ -235,6 +235,7 @@ process_args() {
             if [[ ${DEBUG} == true ]]; then
                 QEMU_CMD+=",debug=on"
             fi
+            QEMU_CMD+=" -object memory-backend-ram,id=ram1,size=${MEM},private=on"
             ;;
     	"td-1.5")
             cpu_tsc=$(grep 'cpu MHz' /proc/cpuinfo | head -1 | awk -F: '{print $2/1024}')
@@ -299,7 +300,9 @@ process_args() {
 
     # Enable vsock
     if [[ ${USE_VSOCK} == true ]]; then
-        QEMU_CMD+=" -device vhost-vsock-pci,guest-cid=3 "
+        # Generate a random guest-cid to avoid conflict with other TDs
+        random_cid=$((RANDOM % 128 + 1))
+        QEMU_CMD+=" -device vhost-vsock-pci,guest-cid=${random_cid} "
     fi
 
     # Specify extra kernel cmdline to be added for vm boot
diff --git a/src/cvm-image-rewriter/run.sh b/src/cvm-image-rewriter/run.sh
index 68cfba0..306d4bd 100755
--- a/src/cvm-image-rewriter/run.sh
+++ b/src/cvm-image-rewriter/run.sh
@@ -13,12 +13,7 @@ CONNECTION_SOCK=""
 CONSOLE_OPT=""
 
 # Scan all subdirectories from pre-stage and post-stage
-pre_stage_dirs=("$TOP_DIR/pre-stage"/*/)
-post_stage_dirs=("$TOP_DIR/post-stage"/*/)
-# shellcheck disable=SC2034,SC2207
-IFS=$'\n' sorted=($(sort <<<"${pre_stage_dirs[*]}")); unset IFS
-# shellcheck disable=SC2034,SC2207
-IFS=$'\n' sorted=($(sort <<<"${post_stage_dirs[*]}")); unset IFS
+plugin_dirs=("$TOP_DIR/plugins"/*/)
 
 # Include common definitions and utilities
 # shellcheck disable=SC1091
@@ -37,19 +32,40 @@ Optional
   -t <number of minutes>    Specify the timeout of rewriting, 6 minutes default,
                             If enabling ima, recommend timeout >8 minutes
   -o <output file name>     Specify the output file name, default is output.qcow2
-  -s <connection socket>    Default is connection URI is qemu:///system,
+  -s <connection socket>    Default connection URI is qemu:///system,
                             if install libvirt, you can specify to "/var/run/libvirt/libvirt-sock"
                             then the corresponding URI is "qemu+unix:///system?socket=/var/run/libvirt/libvirt-sock"
   -n                        Silence running for virt-install, no output
-  -h                        Show usage
 
 EOM
 }
 
+#
+# Update plugin directory list
+#
+# To skip the installation of a specific plugin place a file called "NOT_RUN" 
+# in each plugin directory to be skipped. For example:
+# ``touch plugins/01-resize-image/NOT_RUN``
+#
+update_plugin_dirs() {
+    echo "Update plugin dirs ..."
+
+    tmp_dirs=()
+    for path_item in "${plugin_dirs[@]}"
+    do
+        if [[ -e "$path_item/NOT_RUN" ]]; then
+            info "Skip to run $path_item ... "
+        else
+            tmp_dirs+=("$path_item")
+        fi
+    done
+    plugin_dirs=("${tmp_dirs[@]}")
+}
+
 #
 # Prepare the files copying to target guest image.
 #
-# 1. Scan following content from all subdirectories under pre-stage
+# 1. Scan the following content from all subdirectories under plugins
 #    a) files ==> the root of target guest image
 #    b) guest_run.sh ==> /opt/guest_scripts at target guest image
 # 2. Copy all files to staging directory at $TAGET_FILES_DIR
@@ -60,31 +76,20 @@ prepare_target_files() {
     echo "Prepare target files ..."
 
     # Scan all files directory and copy the content to temporary directory
-    for path_item in "${pre_stage_dirs[@]}"
+    for path_item in "${plugin_dirs[@]}"
     do
-        #
-        # If want to skip some steps, please create a file named "NOT_RUN"
-        # under the plugin directory. For example:
-        #
-        # ``touch pre-stage/01-resize-image/NOT_RUN``
-        #
-        if [[ -f $path_item/NOT_RUN ]]; then
-            info "Skip to run $path_item ... "
-            continue
-        fi
-
         # Copy the content from files directory to target guest images
-        if [[ -d $path_item/files ]]; then
+        if [[ -d "$path_item/files" ]]; then
             info "Copy $path_item/files/ => $TARGET_FILES_DIR"
             cp $path_item/files/* $TARGET_FILES_DIR/ -fr
         fi
 
-        # Copy all guest_run.sh from pre_stage dirs to target guest images
-        if [[ -f $path_item/guest_run.sh ]]; then
-            info "Copy $path_item/guest_run.sh ==> $TARGET_FILES_DIR/opt/guest-scripts/$(basename $path_item)_guest_run.sh"
-            chmod +x $path_item/guest_run.sh
+        # Copy all guest_run.sh from pre-stage dirs to target guest images
+        if [[ -f $path_item/pre-stage/guest_run.sh ]]; then
+            info "Copy $path_item/pre-stage/guest_run.sh ==> $TARGET_FILES_DIR/opt/guest-scripts/$(basename $path_item/pre-stage/)_guest_run.sh"
+            chmod +x $path_item/pre-stage/guest_run.sh
             mkdir -p $TARGET_FILES_DIR/opt/guest-scripts/
-            cp "$path_item"/guest_run.sh "$TARGET_FILES_DIR"/opt/guest-scripts/"$(basename "$path_item")"_guest_run.sh
+            cp "$path_item"/pre-stage/guest_run.sh "$TARGET_FILES_DIR"/opt/guest-scripts/"$(basename "$path_item"/pre-stage/)"_guest_run.sh
         fi
     done
 
@@ -107,92 +112,47 @@ prepare_target_files() {
 }
 
 #
-# Run the host_run.sh script from each subdirectories at pre-stage
+# Run the script from each subdirectories at plugins
 #
-run_pre_stage() {
-    for path_item in "${pre_stage_dirs[@]}"
-    do
-        #
-        # If want to skip some steps, please create a file named "NOT_RUN"
-        # under the plugin directory. For example:
-        #
-        # ``touch pre-stage/01-resize-image/NOT_RUN``
-        #
-        if [[ -f $path_item/NOT_RUN ]]; then
-            info "Skip to run $path_item ... "
-            continue
-        fi
+run_stage() {
+    sub_dir=$1
+    file_name=$2
 
-        if [[ -f $path_item/host_run.sh ]]; then
-            info "Execute the host_run.sh at $path_item"
-            chmod +x $path_item/host_run.sh
-            $path_item/host_run.sh
-        fi
-    done
-}
-
-
-#
-# Run the host_run.sh script from each subdirectories at post-stage
-#
-run_post_stage() {
-    for path_item in "${post_stage_dirs[@]}"
+    for path_item in "${plugin_dirs[@]}"
     do
-        #
-        # If want to skip some steps, please create a file named "NOT_RUN"
-        # under the plugin directory. For example:
-        #
-        # ``touch pre-stage/01-resize-image/NOT_RUN``
-        #
-        if [[ -f $path_item/NOT_RUN ]]; then
-            info "Skip to run $path_item ... "
-            continue
-        fi
-
-        if [[ -f $path_item/host_run.sh ]]; then
-            info "Execute the host_run.sh at $path_item"
-            chmod +x $path_item/host_run.sh
-            $path_item/host_run.sh
+        if [[ -f "$path_item/$sub_dir/$file_name.sh" ]]; then
+            info "Execute the $file_name.sh at $path_item/$sub_dir/"
+            chmod +x $path_item/$sub_dir/$file_name.sh
+            $path_item/$sub_dir/$file_name.sh
         fi
     done
-    # TODO: image status check at post-stage
 }
 
 do_pre_stage() {
+    stage_type="pre-stage"
+    stage_opreation="host_run"
+
     info "Run pre-stage..."
-    prepare_target_files
-    run_pre_stage
-}
 
-#
-# Run the clean_up.sh script from each subdirectories at pre-stage
-#
-clean_plugins() {
-    for path_item in "${pre_stage_dirs[@]}"
-    do
-        #
-        # If want to skip some steps, please create a file named "NOT_RUN"
-        # under the plugin directory. For example:
-        #
-        # ``touch pre-stage/01-resize-image/NOT_RUN``
-        #
-        if [[ -f $path_item/NOT_RUN ]]; then
-            info "Skip to run $path_item ... "
-            continue
-        fi
+    update_plugin_dirs
+    prepare_target_files
 
-        if [[ -f $path_item/clean_up.sh ]]; then
-            info "Execute the clean_up.sh at $path_item"
-            chmod +x $path_item/clean_up.sh
-            $path_item/clean_up.sh
-        fi
-    done
+    run_stage $stage_type $stage_opreation
 }
 
 do_post_stage() {
+    stage_type="post-stage"
+
     info "Run post-stage..."
-    run_post_stage
-    clean_plugins
+    update_plugin_dirs
+
+    # post-stage host-run
+    stage_opreation="host_run"
+    run_stage $stage_type $stage_opreation
+
+    # post-stage clean-up
+    stage_opreation="clean_up"
+    run_stage $stage_type $stage_opreation
 }
 
 _generate_cloud_init_meta_data() {
@@ -252,19 +212,8 @@ _generate_cloud_init_user_data() {
     ARGS=" -a "$(realpath $USER_DATA_BASIC)$CLD_INIT_CONFIG_SUFFIX
 
     # find all cloud init user data in pre-stage
-    for path_item in "${pre_stage_dirs[@]}"
+    for path_item in "${plugin_dirs[@]}"
     do
-        #
-        # If want to skip some steps, please create a file named "NOT_RUN"
-        # under the plugin directory. For example:
-        #
-        # ``touch pre-stage/01-resize-image/NOT_RUN``
-        #
-        if [[ -f $path_item/NOT_RUN ]]; then
-            info "Skip to run $path_item ... "
-            continue
-        fi
-
         sub_dirs=("$path_item"/*/)
         for dir in "${sub_dirs[@]}"
         do
diff --git a/src/cvm-image-rewriter/tdx-libvirt-ubuntu-host.xml.template b/src/cvm-image-rewriter/tdx-libvirt-ubuntu-host.xml.template
index a280071..1cba47a 100644
--- a/src/cvm-image-rewriter/tdx-libvirt-ubuntu-host.xml.template
+++ b/src/cvm-image-rewriter/tdx-libvirt-ubuntu-host.xml.template
@@ -2,14 +2,12 @@
   <name>tdx-guest</name>
   <memory unit='GiB'>REPLACE_MEM_SIZE</memory>
   <memoryBacking>
-    <source type='memfd'/>
+    <source type='memfd-private'/>
   </memoryBacking>
   <vcpu placement="static">REPLACE_VCPU_NUM</vcpu>
   <os>
     <type arch='x86_64' machine='q35'>hvm</type>
-    <loader type='rom'>REPLACE_OVMF_CODE</loader>
-    <kernel>REPLACE_KERNEL</kernel>
-    <cmdline>rw selinux=0 console=hvc0 earlyprintk console=tty0 root=/dev/vda1</cmdline>
+    <loader>/usr/share/qemu/OVMF.fd</loader>
     <boot dev='hd'/>
   </os>
   <features>
@@ -33,26 +31,24 @@
   <devices>
     <emulator>/usr/bin/qemu-system-x86_64</emulator>
     <disk type='file' device='disk'>
-      <driver name='qemu' type='qcow2' cache='none' io='native' iothread='2'/>
-      <source file='REPLACE_IMAGE' index='1'/>
+      <driver name='qemu' type='qcow2'/>
+      <source file='/path/to/image'/>
       <target dev='vda' bus='virtio'/>
     </disk>
-    <console type='pty'>
-      <log file='REPLACE_LOG'/>
-      <target type='virtio' port='0'/>
-    </console>
-    <interface type='bridge'>
-      <source bridge='virbr0'/>
-      <model type='virtio'/>
-    </interface>
     <interface type="user">
       <model type="virtio"/>
-      <address type='pci' domain='0x0000' bus='0x02' slot='0x00' function='0x0'/>
     </interface>
+    <console type='pty'>
+      <target type='virtio' port='0'/>
+    </console>
     <channel type='unix'>
       <source mode='bind'/>
       <target type='virtio' name='org.qemu.guest_agent.0'/>
     </channel>
+    <vsock model='virtio'>
+      <cid auto='yes' address='3'/>
+      <address type='pci' domain='0x0000' bus='0x05' slot='0x00' function='0x0'/>
+    </vsock>
   </devices>
   <allowReboot value='no'/>
   <launchSecurity type='tdx'>
@@ -60,6 +56,6 @@
   </launchSecurity>
   <qemu:commandline>
     <qemu:arg value='-cpu'/>
-    <qemu:arg value='host,-shstk,-kvm-steal-time,pmu=off'/>
+    <qemu:arg value='host,-kvm-steal-time'/>
   </qemu:commandline>
 </domain>