build(deps): update generic-array requirement from 0.14 to 1.4 in /impl/rust/pqf-reader

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Updates the requirements on generic-array to permit the latest version.

Changelog

Sourced from generic-array's changelog.

• 1.4.1

  • Fix some issues with using ZSTs with Box<GenericArray<ZST, N>>. Partial credit to #166.

• 1.4.0

  • Add subtle, arbitrary, bytemuck, bitvec and as-slice implementations for GenericArray.
  • Add GenericSequence::repeat for creating sequences/arrays with repeated elements.
  • Add FallibleGenericSequence with try_generate and from_fallible_iter for fallible generation of sequences/arrays.
    • Added AllocError type (requires alloc feature) for heap allocation failures with try_generate.
  • Add try_fold and try_map to FunctionalSequence for fallible folding/mapping of sequences/arrays.
  • Add try_from_fallible_iter to GenericArray for fallible construction from fallible iterators.
  • Add each_ref/each_mut methods to GenericArray for creating arrays of references to the elements.
  • Fixed some resource leakages and potential UB in degenerate cases.

• 1.3.5

  • Fixed const_transmute not compiling between Rust versions 1.74.0 and 1.83.0. Yanked 1.3.4.

• 1.3.4

  • Significantly improve stack usage of GenericArray methods in unoptimized (-C opt-level=0) build modes.
  • Introduce the hybrid-array-0_4 feature to allow interop between generic-array 1.x and hybrid-array 0.4 versions.
  • Add ConstGenericArray type alias for easier usage with literal const usizes.
  • Implement ZeroizeOnDrop for GenericArray when T: ZeroizeOnDrop (when using the zeroize feature).

• 1.3.2

  • Introduce the compat-0_14 feature to allow interop between generic-array 1.x and 0.14 versions.

• 1.3.1

  • Lower MSRV to 1.65.0 (minimum required for GATs)
  • Make some functions const only on Rust 1.83.0 or newer, otherwise they are non-const.
  • Implement core::error::Error for LengthError on Rust 1.81.0 or newer.

• 1.3.0

  • Restrict ArrayLength to lengths representable by usize to fix soundness issues #156 (may break invalid code)
  • Flatten internal representation to improve miri performance #157
  • Use serde_core instead of serde

• 1.2.1

  • Replace doc_auto_cfg with doc_cfg #155

• 1.2.0

  • Mark more functions as const
  • Bump MSRV to 1.83.0 (reverted in generic-array 1.3.1)

• 1.1.1

  • Add Flatten and Unflatten traits for converting between nested arrays.

• 1.1.0

  • Add Remove trait that adds remove/swap_remove to GenericArray (inspired by #147)
  • Soft-deprecate internals::ArrayBuilder in favor of internals::IntrusiveArrayBuilder

• 1.0.1

... (truncated)

Commits

• 82aa258 Supersedes/Closes #166, fixes some ZST handling in Boxed GA. Improved alloc t...
• 040797e Bump version
• 0d66e86 Tweak FallibleGenericSequence, implement for Box
• a9b9245 Fix docs
• bf79796 Improve FallibleGenericSequence on modern Rust
• 3355395 Fix some resource leaks and UB
• 86ecb6e Fix #164
• 7b50208 Cleanup
• ae115e1 Document more features in the github pages build
• 80bab87 Feature docs
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[systemslibrarian]

Deferred. generic-array 1.4 IS in the build transitively (sha2 0.11 / hkdf 0.13 / sha3 0.12 pull in the hybrid-array crate, the official successor to generic-array, via crypto-common 0.2). The direct generic-array 0.14 dep stays because x25519-dalek 2.0 and aes-gcm 0.10 still hand back GenericArray<U…> values from this version — and 2.x stable releases of those crates have not migrated. The two stacks coexist without friction. Will be resolved as part of the broader x25519-dalek 3.x / aes-gcm 0.11 bump when those leave pre-release. Rationale in pqf-reader/Cargo.toml comment after commit d8b5d3b. Holding open for triage.