Bump github.com/libp2p/go-libp2p-core from 0.2.4 to 0.3.1

[dependabot-preview]

Bumps github.com/libp2p/go-libp2p-core from 0.2.4 to 0.3.1.

Release notes

Sourced from [github.com/libp2p/go-libp2p-core's releases](https://github.com/libp2p/go-libp2p-core/releases).

v0.3.1

• Update dependencies
• In the insecure testing transport, use the reported remote ID instead of computing it.
• Cache serialized public keys to reduce CPU usage when establishing connections.
• Add additional events:
  • Identify
  • NAT status changes

v0.3.0

PeerIDs encoded as CIDs

In order to bring multibase support to peer IDs, we're slowly switching to encoding peer IDs as libp2p-key CIDs when formatted in text. They're currently formatted as raw base58 encoded multihashes.

This release:

• Adds support for encoding peer IDs as libp2p key CIDs (not used by default).
• Adds support for decoding libp2p key CIDs as peer IDs (enabled by default).

Go 1.13

This release depends on go 1.13 as it uses go's built-in ed25519 library. If you are unable to upgrade, please work with the go team to address your issues with 1.13 and/or hold off on upgrading this package.

P2P Multiaddrs

We've switched the default libp2p multiaddr format from /ipfs/Qm... to /p2p/Qm... (in text only). All libp2p implementations have supported parsing these addresses for quite a while now so we don't expect any issues.

See https://discuss.libp2p.io/t/multiaddr-format-change-ipfs-p2p/330.

Bug Fixes

As this is a release of the core package, there aren't all that many bug fixes. However:

• We've fixed an issue in our metrics library that would cause it to report nonsensical bandwidth spikes in some cases ([BandwidthCounter is erroneously reporting huge spikes libp2p/go-libp2p-core#65](https://github-redirect.dependabot.com/BandwidthCounter is erroneously reporting huge spikes libp2p/go-libp2p-core#65))
• We've regenerated our protobufs to fix some potential parsing issues.
• We've fixed some potential multiaddr parsing issues.

v0.2.5

This release [fixes a bug](https://github-redirect.dependabot.com/libp2p/go-libp2p-core/pull/74) in the insecure plaintext security protocol. The implementation now conforms to the spec by using varints to delimit messages instead of fixed-length integers.

Commits

• e075dc9 Merge pull request [Extend go-ethereums USB Ledger HD support with OTG #109](https://github-redirect.dependabot.com/build(deps): bump github.com/multiformats/go-multihash from 0.0.10 to 0.0.13 libp2p/go-libp2p-core#109) from libp2p/dependabot/go_modules/github.com/multifor...
• 748a57a build(deps): bump github.com/multiformats/go-multihash
• 52a4260 Introduce routability and protocol events; cache unmarshalled RSA keys ([Sending smart contracts #105](https://github-redirect.dependabot.com/Introduce routability and protocol events; cache unmarshalled RSA keys libp2p/go-libp2p-core#105))
• 0ad6b1c Merge pull request [Update signals.c: add iOS-related signal #52](https://github-redirect.dependabot.com/fix: get remoteID from pb message in plaintext libp2p/go-libp2p-core#52) from mhchia/patch-1
• 4c2606e Merge pull request [Fix Jail requests when halting on long requests is enabled #103](https://github-redirect.dependabot.com/Update README.md libp2p/go-libp2p-core#103) from Mikerah/master
• f86f7e0 Update README.md
• 2ee848f Merge pull request [Find solution to blocking eth calls (during sync) #102](https://github-redirect.dependabot.com/build(deps): bump github.com/ipfs/go-cid from 0.0.3 to 0.0.4 libp2p/go-libp2p-core#102) from libp2p/dependabot/go_modules/github.com/ipfs/go-...
• 94fac75 build(deps): bump github.com/ipfs/go-cid from 0.0.3 to 0.0.4
• 6f25166 Merge pull request [Fix develop branch #100](https://github-redirect.dependabot.com/typo fix libp2p/go-libp2p-core#100) from Mikerah/patch-1
• e5d371f typo fix
• Additional commits viewable in [compare view](https://github.com/libp2p/go-libp2p-core/compare/v0.2.4...v0.3.1)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[status-im-auto]

Jenkins Builds

❔	Commit	#️⃣	Finished (UTC)	Duration	Platform	Result
❌	e6de43a	#1	2020-02-24 05:17:51	~43 sec	android	📄log
✔️	e6de43a	#1	2020-02-24 05:17:55	~43 sec	linux	📦zip
✔️	e6de43a	#1	2020-02-24 05:22:18	~5 min	ios	📦zip

[status-github-bot]

Pull Request Checklist

• Have you updated the documentation, if impacted (e.g. docs.status.im)?

[dependabot-preview]

Superseded by #1895.