CP-50181: Percent decode all Uri paths before using them

[last-genius]

Uri.path returns percent-encoded output, therefore it can't be expected to behave correctly in cases where it's used to map to Unix files. Our PR upstream introduced Uri.path_unencoded function, use that instead.

There is one usage of Uri.path left:

$ rg --pcre2 'Uri.path(?!_unencoded)' --no-heading -g 'ocaml/**/*.ml'
ocaml/xe-cli/newcli.ml:138:    let path = Uri.path_and_query uri |> Uri.pct_decode in
ocaml/vhd-tool/cli/sparse_dd.ml:403:          ?port:(Uri.port uri) ~path:(Uri.path uri) ~query:(Uri.query uri)
ocaml/libs/open-uri/open_uri.ml:77:      let filename = Uri.path_and_query uri |> Uri.pct_decode in

But this is not dangeous as it's used as an argument for Uri.make, which is fine without pct_decode:

utop # Uri.make ~path:("/get<>`&") ();;
- : Uri.t = /get%3C%3E%60&
utop # Uri.make ~path:("/get%3C%3E%60&") ();;
- : Uri.t = /get%3C%3E%60&

I'm not sure it's worth adding a quality gate to future-proof this.

===

xapi-project/xs-opam#693 is required to build and merge this, therefore currently opening as a draft - but it's ready for review.

[last-genius]

With the xs-opam changes, this passed BST/BVT (run id 201742)

[psafont]

Merge needs to wait until the next xs-opam version is tagged. (6.83.0)