Add support for specfying vfio id's

roles/iommu/README.md

@@ -4,6 +4,10 @@
 
 - `iommu_pt`: Default true, Configure passthrough mode, which doesn't require DMA translation.
 
+## Host Vars
+
+- `iommu_vfio_pci_ids`: Can optionally be set with the pci id of the device to pass-through.
+
 ## Example playbook
 
 ```

roles/iommu/handlers/main.yml

@@ -0,0 +1,11 @@
+---
+- name: Regenerate initramfs
+  shell: |-
+    #!/bin/bash
+    set -eux
+    dracut -v -f /boot/initramfs-$(uname -r).img $(uname -r)
+  become: true
+- name: reboot
+  reboot:
+    msg: "Rebooting the hypervisor"
+  become: true

roles/iommu/tasks/main.yml

@@ -1,12 +1,43 @@
 ---
+- name: Template dracut config for vfio
+  blockinfile:
+    path: /etc/dracut.conf.d/gpu-vfio.conf
+    block: |
+      add_drivers+="vfio vfio_iommu_type1 vfio_pci vfio_virqfd"
+    owner: root
+    group: root
+    mode: 0660
+    create: true
+  become: true
+  when: iommu_vfio_pci_ids is defined
+  notify:
+    - Regenerate initramfs
+    - reboot
+
+- name: Add vfio to modules-load.d
+  blockinfile:
+    path: /etc/modules-load.d/vfio.conf
+    block: |
+      vfio
+      vfio_iommu_type1
+      vfio_pci
+      vfio_virqfd
+    owner: root
+    group: root
+    mode: 0664
+    create: true
+  become: true
+  when: iommu_vfio_pci_ids is defined
+  notify: reboot
+
 - name: Add iommu to kernel command line (Intel)
   ansible.builtin.include_role:
     name: stackhpc.linux.grubcmdline
   vars:
-    kernel_cmdline: # noqa: var-naming[no-role-prefix]
-      - intel_iommu=on
+    kernel_cmdline: "{{ ['intel_iommu=on'] + (['vfio-pci.ids=' + iommu_vfio_pci_ids] if iommu_vfio_pci_ids is defined else []) }}"  # noqa: var-naming[no-role-prefix]
     kernel_cmdline_remove: # noqa: var-naming[no-role-prefix]
       - ^intel_iommu=
+      - ^vfio-pci\.ids=
   when: ansible_facts.processor | select('search', 'Intel') | list | length > 0
 
 - name: Set iommu=pt