TLS min/max version updates

[jehiah]

Switch to allow tls_min_version="tls1.0" from a config file instead of opaque integer (and same for manually setting Config objects).

Default min version tls1.0 to avoid allowing ssl3.0 by default, and specify max TLS version of 1.2 to take advantage of TLS_FALLBACK_SCSV prior to Go 1.5

for more discussion see: #513

[jehiah]

not my cleanest code ever, but RFR @mreiferson @twmb

[mreiferson]

did you see my comments on #513?

I'm fine if you want to add . to the strings - but I don't think we actually needed the code for config file support and I don't think we need strings for setting Config directly. I think it makes more sense to be consistent with max version and use the constants provided by the tls package.

[mreiferson]

ok, yes, we do need this - whooops 😁

[mreiferson]

it might make sense to "promote" this translation behavior up into go-options itself in some generic way.

if the destination type implements a "set" interface then use that for coercion?

[jehiah]

Yeah that's my general thought. I need to review better how we landed w/ that and validation for reader-options in go-nsq. I'll ping when i have taken a pass at updating.

[jehiah]

Ok, did some refactoring to main() to make it testable (and as a nice benefit dropped all unused flagset variables). I found the problem i was having which was related to handling empty string from the config file.

We should improve config validation in a future PR.

[mreiferson]

not sure Validate is the right word here, but I don't have any better ideas

[mreiferson]

this came out pretty cool - LGTM after that minor nitpick

[twmb]

Why keep this line?

[jehiah]

ha. oops.

good catch

[twmb]

This should be followed with a corresponding change to go-nsq that adds dots to the min version flag name and also adds max version.

👍

[jehiah]

Thanks for the feedback @mreiferson @twmb

RFM after travis goes green.