build(deps): bump github.com/libp2p/go-libp2p from 0.36.5 to 0.37.0

[dependabot]

Bumps github.com/libp2p/go-libp2p from 0.36.5 to 0.37.0.

Release notes

Sourced from github.com/libp2p/go-libp2p's releases.

v0.37.0

Breaking Changes

• The libp2p.MultiaddrResolver option now takes an interface rather than a specific pointer. This decouples the resolver from a specific implementation and also defines a better interface that is aware of bounds.
  • The swarm exports a new type ResolverFromMaDNS that implements this interface from a *madns.Resolver. The one line diff is essentially:

  -libp2p.MultiaddrResolver(rslv)
  +libp2p.MultiaddrResolver(swarm.ResolverFromMaDNS{Resolver: rslv})

🔦 Highlights

HTTP Peer ID Authentication (#2854)

Authenticate a peer's identity over HTTP. This works on both libp2p stream backed HTTP transports and standard HTTP transports. There is also browser support in the js-libp2p module: https://github.com/libp2p/js-libp2p-http-fetch/tree/main.

See the spec for more details on how it works: https://github.com/libp2p/specs/blob/master/http/peer-id-auth.md

Experimental WithFxOption (#2956)

A new libp2p Config option lets you add custom Fx options to the libp2p constructor. Use this to get access to and provide libp2p services.

For example, this allows you to easily get a reference to the ID Service of a libp2p Node. Refer to this test for a concrete code example: https://github.com/libp2p/go-libp2p/blob/c4c3a34545aab54b5b825a7adbd6a3db2c680afa/fx_options_test.go#L50-L60

In the future we'd like to expose the Fx options libp2p uses to construct itself so that users can better customize their libp2p nodes and integrate it seamlessly into their applications.

Changelog

From v0.36.5 to v0.37.0

• feat: Add WithFxOption (#2956)
• Make BlackHoleState type public (#2917)
• connmgr: reduce log level for untagging untracked peers
• feat(websocket): switch the underlying http server logger to use ipfs/go-log (#2985)
• fix(websocket): re-enable websocket transport test (#2987)
• relay: make only 1 reservation per peer (#2974)
• libp2phttp: HTTP Peer ID Authentication (#2854)
• chore: update quic-go to v0.48.1
• Add backoff for updating local IP addresses on error (#2999) Reporting credit to @​elecbug
• fix: swarm: refactor address resolution (#2990)
• peerstore: limit number of non connected peers in addrbook (#2971)
• swarm: add a peer dial latency metric (#2959)
• autonat: fix interaction with autorelay (#2967)

Full Changelog: libp2p/go-libp2p@v0.36.5...v0.37.0

New Contributors

... (truncated)

Commits

• 83d458c Release v0.37.0 (#3013)
• c4c3a34 feat: Add WithFxOption (#2956)
• 3d63fd6 Use fork of release-check (#3018)
• f120c6d chore: update quic-go to v0.48.1 (#3016)
• aebc4eb chore: update imports to use slices package (#3007)
• b1a0919 Change latency metrics buckets (#3012)
• ed0d8c9 chore: bump deps in preparation for v0.37.0 (#3011)
• b9cb861 autonat: fix interaction with autorelay (#2967)
• af2042c swarm: add a peer dial latency metric (#2959)
• 26c9014 peerstore: limit number of non connected peers in addrbook (#2971)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
github.com/libp2p/go-libp2p	[>= 6.0.a, < 6.0.1000022]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

New Coverage	62.5% of statements
Patch Coverage	0.0% of changed statements (0/0)

---

^{Coverage provided by https://github.com/seriousben/go-patch-cover-action}