vSphere: Fix security context of VDDK validation pod

[ahadas]

The previous attempt to fix the execution of the VDDK validation pod didn't succeed - it allowed to run it on the 'default' namespace but its execution failed on other restricted namespaces in which the QEMU user (107) is not included in the allowed range.

In order to fix this properly, we differentiate OpenShift from k8s: in case of OpenShift we don't specify RunAsNonRoot and RunAsUser in order to let the platform choose an appropriate user, and in case of k8s, we specify the QEMU user (107)

[codecov]

Codecov Report

Attention: Patch coverage is 0% with 13 lines in your changes are missing coverage. Please review.

Project coverage is 16.89%. Comparing base (a55e08e) to head (d6c724d).
Report is 231 commits behind head on main.

Files	Patch %	Lines
pkg/controller/plan/validation.go	0.00%	13 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff            @@
##           main     #776       +/-   ##
=========================================
+ Coverage      0   16.89%   +16.89%     
=========================================
  Files         0       88       +88     
  Lines         0    17933    +17933     
=========================================
+ Hits          0     3030     +3030     
- Misses        0    14658    +14658     
- Partials      0      245      +245     

Flag	Coverage Δ
unittests	16.89% <0.00%> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[ahadas]

ok, apparently on k8s we can't avoid setting it so we'd need to differentiate k8s from OpenShift....

[ahadas]

I don't expect the latest changes to pass our CI, need additional changes for k8s

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
7.9% Duplication on New Code

See analysis details on SonarCloud