🐛 Fix CoreDNS upgrade from v1.20 to v1.21

[fabriziopandini]

What this PR does / why we need it:
The upstream image for CoreDNS was renamed from 'k8s.gcr.io/coredns' to k8s.gcr.io/coredns/coredns, and this is impacting upgrades of workload clusters from v1.20 to v1.21.
This PR makes KCP upgrades to account for this change.

Please note that:

• the change applies only to users relying on upstream image repository ('k8s.gcr.io); users relying on custom repository could continue to use mrepo.io/coredns` as image name (no changes required).
• starting from CoreDNS 1.8.0, the upstream images requires the v prefix on the ImageTag, but this should be taken care by the user when specifying the desired version in KCP.

Which issue(s) this PR fixes:
Fixes #4463

/assign @vincepri
@sbueringer

[sbueringer]

/lgtm

[vincepri]

/hold

Need more time for a review

[vincepri]

Do we need the trim suffix here?

[fabriziopandini]

given that the image repository is provider by the user, and that down we are concatenating it with image name and tag, I thought that removing the suffix makes the concat operation more robust (it will work with the user providing "k8s.gcr.io" but also "k8s.gcr.io/")

[vincepri]

Should we instead validate input and provide guidance to users?

[fabriziopandini]

We can add validation and documentation as well (in another PR)
Nevertheless, I don't think this extra caution will hurt, but if you prefer I can remove it; it is not core to the fix we are discussing here

[sbueringer]

Do we know how kubeadm itself handles / suffixes? (depending on how they are doing it, consistency might be a factor)

[fabriziopandini]

AFAIK kubeadm is not doing any validation on ImageTag/ImageRepository, nor we are doing in CAPI
Also kubeadm, is not involved in immutable upgrades.

I just thought it making the operation more robust, but happy to remove it if it is blocking this PR...

[sbueringer]

was just an idea, it's fine for me either way

[vincepri]

Could we open a follow-up PR to add validation?

[fabriziopandini]

Adding validation could have some implications. I opened an issue to discuss them #4482

[vincepri]

Do we need the trim suffix here?

[fabriziopandini]

(see comment above)

[CecileRobertMichon]

we should add some constants for these

[sbueringer]

Similar to how kubeadm does it, probably add a comment which references the kubeadm upstream contant here https://github.com/kubernetes/kubernetes/blob/release-1.21/cmd/kubeadm/app/constants/constants.go#L331?

[CecileRobertMichon]

even better ^

[fabriziopandini]

Constant added
I would avoid to link to the kubeadm code, because things can change there (e.g constant order was changed during v1.21); also, kubeadm is just adapting to what happen somewhere else

[sbueringer]

/lgtm

[CecileRobertMichon]

/lgtm
/assign @vincepri

[vincepri]

/approve
/hold cancel

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: vincepri

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [vincepri]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment