ct is a tool that will consume a Container Linux Config and produce a JSON file that can be given to a Container Linux machine when it first boots to set the machine up. Using this config, a machine can be told to create users, format the root filesystem, set up the network, install systemd units, and more.
Container Linux Configs are YAML files conforming to ct's schema. For more information on the schema, take a look at configuration.
ct can be downloaded form its GitHub Releases page or used via Docker (cat example.yaml | docker run --rm -i quay.io/coreos/ct:latest-dev --platform=YOURPLATFORM
).
As a simple example, let's use ct to set the authorized ssh key for the core user on a Container Linux machine.
passwd:
users:
- name: core
ssh_authorized_keys:
- ssh-rsa AAAAB3NzaC1yc...
In this above file, you'll want to set the ssh-rsa AAAAB3NzaC1yc...
line to be your ssh public key (which is probably the contents of ~/.ssh/id_rsa.pub
, if you're on Linux).
If we take this file and give it to ct:
$ ./bin/ct --in-file example.yaml
{"ignition":{"version":"2.0.0","config":{}},"storage":{},"systemd":{},"networkd":{},"passwd":{"users":[{"name":"core","sshAuthorizedKeys":["ssh-rsa AAAAB3NzaC1yc..."]}]}}
We can see that it produces a JSON file. This file isn't intended to be human-friendly, and will definitely be a pain to read/edit (especially if you have multi-line things like systemd units). Luckily, you shouldn't have to care about this file! Just provide it to a booting Container Linux machine and Ignition, the utility inside of Container Linux that receives this file, will know what to do with it.
The method by which this file is provided to a Container Linux machine depends on the environment in which the machine is running. For instructions on a given provider, head over to the list of supported platforms for Ignition.
To see some examples for what else ct can do, head over to the examples.