Add support for Hubble flowlogs config

Author: ErmolenkoMaxim

roles/network_plugin/cilium/defaults/main.yml

@@ -348,3 +348,5 @@ cilium_certgen_args:
 cilium_clusterrole_rules_operator_extra_vars: []
 cilium_enable_host_firewall: false
 cilium_policy_audit_mode: false
+
+# hubble_flowlogs_config: {}

roles/network_plugin/cilium/templates/cilium/config.yml.j2

@@ -281,6 +281,11 @@ data:
   enable-bgp-control-plane: "{{ cilium_enable_bgp_control_plane }}"
 
   disable-cnp-status-updates: "{{ cilium_disable_cnp_status_updates }}"
+
+{% if hubble_flowlogs_config is defined %}
+  hubble-flowlogs-config-path: /flowlog-config/flowlogs.yaml
+{% endif %}
+
 {% if cilium_ip_masq_agent_enable %}
 ---
 apiVersion: v1
@@ -297,3 +302,15 @@ data:
     masqLinkLocal: {{ cilium_masq_link_local | bool }}
     resyncInterval: "{{ cilium_ip_masq_resync_interval }}"
 {% endif %}
+
+{% if hubble_flowlogs_config is defined %}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: cilium-flowlog-config
+  namespace: kube-system
+data:
+  flowlogs.yaml: |
+    {{ hubble_flowlogs_config | to_yaml | indent(4) }}
+{% endif %}

roles/network_plugin/cilium/templates/cilium/ds.yml.j2

@@ -192,6 +192,13 @@ spec:
           mountPath: /var/lib/cilium/tls/hubble
           readOnly: true
 {% endif %}
+
+{% if hubble_flowlogs_config is defined %}
+        - mountPath: /flowlog-config
+          name: flowlog-config
+          readOnly: true
+{% endif %}
+
 {% for volume_mount in cilium_agent_extra_volume_mounts %}
         - {{ volume_mount | to_nice_yaml(indent=2) | indent(10) }}
 {% endfor %}
@@ -346,6 +353,11 @@ spec:
       tolerations:
       - operator: Exists
       volumes:
+{% if hubble_flowlogs_config is defined %}
+      - name: flowlog-config
+        configMap:
+          name: cilium-flowlog-config
+{% endif %}
         # To keep state between restarts / upgrades
       - name: cilium-run
         hostPath: