build: bump aws-lc-rs from 1.16.1 to 1.16.2 (#43467)

Bumps [aws-lc-rs](https://github.com/aws/aws-lc-rs) from 1.16.1 to
1.16.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-lc-rs/releases">aws-lc-rs's
releases</a>.</em></p>
<blockquote>
<h2>aws-lc-rs v1.16.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Implement HMAC <code>sign_to_buffer</code> by <a
href="https://github.com/fabrice102"><code>@​fabrice102</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1058">aws/aws-lc-rs#1058</a></li>
<li>Fix <code>PublicEncryptingKey::from_der</code> to reject undersized
RSA keys by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1065">aws/aws-lc-rs#1065</a>
<ul>
<li><code>from_der()</code> now correctly enforces the 2048-bit minimum
key size, consistent with <code>PrivateDecryptingKey::from_pkcs8</code>.
Users loading &lt;2048-bit public keys for encryption will now receive
<code>KeyRejected</code>.</li>
</ul>
</li>
<li>Update licensing of <code>aws-lc-sys</code> to reflect third-party
component licenses by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1062">aws/aws-lc-rs#1062</a></li>
<li>Improved <code>dev-tests-only</code> documentation and <a
href="https://docs.rs/aws-lc-rs/latest/aws_lc_rs/">docs.rs</a> rendering
by <a href="https://github.com/justsmth"><code>@​justsmth</code></a> in
<a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1054">aws/aws-lc-rs#1054</a></li>
</ul>
<h3>Build Improvements</h3>
<ul>
<li>Fix jitterentropy build failure caused by <code>cc</code> crate
CFLAGS handling change by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1064">aws/aws-lc-rs#1064</a></li>
<li>Unify sys-crate build scripts by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/995">aws/aws-lc-rs#995</a></li>
</ul>
<h3>Issues Being Closed</h3>
<ul>
<li>sys: license of s2n-bignum and fiat-crypto not reflected &amp;
license texts partially missing -- <a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1044">aws/aws-lc-rs#1044</a></li>
<li>Deterministic key agreement for testing -- <a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1020">aws/aws-lc-rs#1020</a></li>
</ul>
<h2>Other Merged PRs</h2>
<ul>
<li>Prepare aws-lc-fips-sys v0.13.13 by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1066">aws/aws-lc-rs#1066</a></li>
<li>Prepare aws-lc-sys v0.39.0 by <a
href="https://github.com/justsmth"><code>@​justsmth</code></a> in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1067">aws/aws-lc-rs#1067</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/fabrice102"><code>@​fabrice102</code></a> made
their first contribution in <a
href="https://redirect.github.com/aws/aws-lc-rs/pull/1058">aws/aws-lc-rs#1058</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/aws/aws-lc-rs/compare/v1.16.1...v1.16.2">https://github.com/aws/aws-lc-rs/compare/v1.16.1...v1.16.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1f8a0602f5"><code>1f8a060</code></a>
Prepare aws-lc-sys v0.39.0 (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1067">#1067</a>)</li>
<li><a
href="0553c46a0e"><code>0553c46</code></a>
Prepare aws-lc-fips-sys v0.13.13 (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1066">#1066</a>)</li>
<li><a
href="80dfe876a7"><code>80dfe87</code></a>
Validate RSA-key size (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1065">#1065</a>)</li>
<li><a
href="3f4dca4442"><code>3f4dca4</code></a>
Fix jitterentropy build failure caused by <code>cc</code> crate CFLAGS
handling change (...</li>
<li><a
href="b60cc41529"><code>b60cc41</code></a>
Implement HMAC <code>sign_to_buffer</code> (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1058">#1058</a>)</li>
<li><a
href="6996ba65a3"><code>6996ba6</code></a>
Update licensing (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1062">#1062</a>)</li>
<li><a
href="c0d4bcba38"><code>c0d4bcb</code></a>
Unify sys-crate build scripts (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/995">#995</a>)</li>
<li><a
href="ef19ea3832"><code>ef19ea3</code></a>
docs: improve dev-tests-only documentation and docs.rs rendering (<a
href="https://redirect.github.com/aws/aws-lc-rs/issues/1054">#1054</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-lc-rs/compare/v1.16.1...v1.16.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aws-lc-rs&package-manager=cargo&previous-version=1.16.1&new-version=1.16.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

deny.toml

@@ -59,7 +59,6 @@ allow = [
     "ISC",
     "MIT",
     "MPL-2.0",
-    "OpenSSL",
     "OFL-1.1",
     "Ubuntu-font-1.0",
     "Unicode-3.0",