---
- name: Add cgroup rule
  ansible.builtin.blockinfile:
    path: /etc/pve/nodes/epona/lxc/605.conf
    state: present
    block: |
      lxc.cgroup2.devices.allow: c 226:0 rwm
      lxc.cgroup2.devices.allow: c 226:128 rwm
      lxc.cgroup2.devices.allow: c 29:0 rwm
      lxc.cgroup2.devices.allow: c 189:* rwm
      lxc.cgroup2.devices.allow: a
      lxc.mount.entry: /dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file 0, 0
      lxc.mount.entry: /dev/bus/usb/002 dev/bus/usb/002 none bind,optional,create=dir 0, 0
      lxc.cap.drop:
      lxc.mount.auto: cgroup:rw