vmgs: dont upgrade vmgs encryption on auto and allow fallback for gspkey

[tjones60]

cherry picks of:

#2055 allow fallback from GspKey to GspById

When strict encryption policy is not enabled, allow the HCL to GspById if GspKey is not available.

#2280 dont upgrade vmgs encryption on auto

To prevent unintentional migration of VMGS encryption methods, disable higher encryption sources when encryption policy is configured to Auto and the VMGS has already been provisioned.

[Copilot]

Pull Request Overview

This PR prevents unintended encryption changes to VMGS (VM Guest State) files when using the Auto encryption policy. It adds tracking to determine if a VMGS file was provisioned during the current boot and uses this information to preserve existing encryption state unless explicitly requested.

Key changes:

• Added provisioned_this_boot tracking to VMGS to distinguish between newly provisioned and pre-existing guest state
• Updated Auto encryption policy to preserve existing encryption method instead of migrating to different schemes
• Refined GspKey encryption policy to allow fallback to GspById when strict policy is disabled

Reviewed Changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated no comments.

File	Description
vm/vmgs/vmgs/src/vmgs_impl.rs	Adds provisioned_this_boot field and getter method to track if VMGS was formatted during current boot
vm/devices/get/get_protocol/src/dps_json.rs	Updates documentation to clarify that Auto policy no longer migrates encryption and GspKey policy allows fallback
openhcl/underhill_attestation/src/lib.rs	Implements logic to prevent encryption changes under Auto policy for existing unencrypted or GspById-encrypted guest state

Comments suppressed due to low confidence (1)

vm/devices/get/get_protocol/src/dps_json.rs:123

• Corrected spelling of 'Exisiting' to 'Existing'.

    /// if it is available. Exisiting GspKey encryption will be used unless