Update boring requirement from 3 to 4

[dependabot]

Updates the requirements on boring to permit the latest version.

Release notes

Sourced from boring's releases.

v4.15.0

What's Changed

• Actually expose SslEchKeys by @​rushilmehra in cloudflare/boring#318
• Revert breaking changes by @​rushilmehra in cloudflare/boring#319
• Introduce a builder pattern for SslEchKeys + make set_ech_keys take a reference by @​rushilmehra in cloudflare/boring#320
• Revert cmake bump (for now) as it is overly restrictive by @​rushilmehra in cloudflare/boring#321
• Fix lifetimes in ssl::select_next_proto by @​rushilmehra in cloudflare/boring#323
• Expose API to enable certificate compression. by @​mstyura in cloudflare/boring#241

NOTE: v4.14.0 has been yanked due to accidentally including breaking changes

Full Changelog: cloudflare/boring@v4.14.0...v4.15.0

Changelog

Sourced from boring's changelog.

4.15.0

• 2025-02-27 Expose API to enable certificate compression. (#241)
• 2025-02-23 Fix lifetimes in ssl::select_next_proto
• 2025-02-23 Revert cmake bump (for now) as it is overly restrictive (#321)
• 2025-02-21 Introduce a builder pattern for SslEchKeys + make set_ech_keys take a reference (#320)
• 2025-02-21 Revert "Refactor!: Remove strict TokioIo response requirement from hyper_boring::v1::HttpsConnector"
• 2025-02-21 Revert "Refactor!: Introduce a Cargo feature for optional Hyper 0 support"
• 2025-02-21 Address clippy lints
• 2025-02-21 Actually expose SslEchKeys

4.14.0

• 2025-02-19 Bump cmake-rs to improve Mac OS build parallelism
• 2025-02-19 Expose SSL_CTX_set1_ech_keys from SslContextRef
• 2024-01-27 Set CMAKE_BUILD_PARALLEL_LEVEL to available_parallelism
• 2025-02-14 build: Fix the build for 32-bit Linux platform (#312)
• 2024-11-30 Use corresponds macro
• 2025-02-12 Expose SSL_set_enable_ech_grease
• 2025-02-12 Clean up ECH tests
• 2025-02-10 Expose client/server-side ECH
• 2025-02-10 Expose EVP_HPKE_KEY
• 2025-02-10 Clean up boring_sys::init()
• 2024-11-27 Detailed error codes
• 2025-02-04 chore: Fix docs on SslRef::replace_ex_data
• 2025-01-22 fix manual_c_str_literals clippy warning
• 2025-01-22 replace once_cell with LazyLock
• 2025-01-13 RTG-3333 Support X25519MLKEM768 by default, but don't sent it as client
• 2024-07-31 Allow dead_code instead of disabling clippy entirely for bindgen
• 2024-11-12 Remove INVALID_CALL from mid-handshake error message
• 2024-08-16 Fix bug with accessing memzero'd X509StoreContext in tests
• 2024-08-16 Support linking with a runtime cpp library
• 2024-12-06 Refactor!: Introduce a Cargo feature for optional Hyper 0 support
• 2024-12-06 Refactor!: Remove strict TokioIo response requirement from hyper_boring::v1::HttpsConnector

4.13.0

• 2024-11-26 Sync X509StoreBuilder with openssl
• 2024-11-26 Sync X509VerifyFlags with openssl
• 2021-11-21 More corresponds from openssl
• 2024-11-28 Work around Rust settings inconsistent iOS SDK version
• 2024-11-28 Clippy
• 2024-03-11 Fix Windows build

4.12.0

• 2024-11-20 Add bindings for SSL_CB_ACCEPT_EXIT and SSL_CB_CONNECT_EXIT
• 2024-10-22 (ci): brew link x86 toolchain for macos13 runner
• 2024-10-22 Skip bindgen 0.70's layout tests before Rust 1.77
• 2024-10-18 Add set_cert_verify_callback (SSL_CTX_set_cert_verify)

4.11.0

• 2024-10-17 boring-sys: include HPKE header file for bindgen
• 2024-10-17 Add "fips-compat" feature (#286)

... (truncated)

Commits

• 5268f63 Expose API to enable certificate compression. (#241)
• 5e0002b Release 4.15.0
• 9ba00ea Fix lifetimes in ssl::select_next_proto
• 7ba3225 Revert cmake bump (for now) as it is overly restrictive (#321)
• abaf067 Introduce a builder pattern for SslEchKeys + make set_ech_keys take a referen...
• f439f92 Revert "Refactor!: Remove strict TokioIo response requirement from `hyper_b...
• 7b4bfcb Revert "Refactor!: Introduce a Cargo feature for optional Hyper 0 support"
• bc17a06 Address clippy lints
• cbdf963 Actually expose SslEchKeys
• 156cf04 Release 4.14.0 (#317)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)