Bump github.com/ipfs/kubo from 0.16.0-rc1 to 0.18.1

[dependabot[bot]]

Bumps github.com/ipfs/kubo from 0.16.0-rc1 to 0.18.1.

Release notes

Sourced from github.com/ipfs/kubo's releases.

v0.18.1

• 💬 Discuss
• 🔦 Highlights
  • New default Pubsub.SeenMessagesStrategy
  • Improving libp2p resource management integration
• 📝 Changelog
• 👨‍👩‍👧‍👦 Contributors

🔦 Highlights

New default Pubsub.SeenMessagesStrategy

A new optional Pubsub.SeenMessagesStrategy configuration option has been added.

This option allows you to choose between two different strategies for deduplicating messages: first-seen and last-seen.

When unset, the default strategy is last-seen, which calculates the time-to-live (TTL) countdown based on the last time a message is seen. This means that if a message is received and then seen again within the specified TTL window based on the last time it was seen, it won't be emitted.

If you prefer the old behavior, which calculates the TTL countdown based on the first time a message is seen, you can set Pubsub.SeenMessagesStrategy to first-seen.

Improving libp2p resource management integration

This builds on the default protection nodes get against DoS (resource exhaustion) and eclipse attacks with the go-libp2p Network Resource Manager/Accountant that was fine-tuned in Kubo 0.18.

Adding default hard-limits from the Resource Manager/Accountant after the fact is tricky, and some additional improvements have been made to improve the computed defaults. As much as possible, the aim is for a user to only think about how much memory they want to bound libp2p to, and not need to think about translating that to hard numbers for connections, streams, etc. More updates are likely in future Kubo releases, but with this release:

1. System.StreamsInbound is no longer bounded directly
2. System.ConnsInbound, Transient.Memory, Transiet.ConnsInbound have higher default computed values.

Changelog

• github.com/ipfs/kubo:
  • Add overview section
  • Adjust inbound connection limits depending on memory.
  • feat: Pubsub.SeenMessagesStrategy (#9543) (ipfs/kubo#9543)

... (truncated)

Commits

• 675f8bd Merge pull request #9611 from ipfs/release-v0.18.1
• 505f072 docs: add full v0.18.1 changelog
• 9c1a803 Add overview section
• bcac3f5 Adjust inbound connection limits depending on memory.
• 2c623b6 feat: Pubsub.SeenMessagesStrategy (#9543)
• abd6343 chore: update version
• 6750377 Merge pull request #9498 from ipfs/release-v0.18
• 7edf86c docs: update changelog
• 8169043 chore: update version.go
• 0aa23b3 fix: clarity: no user supplied rcmgr limits of 0 (#9563)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #259.