Require a CTVerifier and CTPolicyEnforcer for TLS/QUIC sockets

net/http/http_network_session.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "net/http/http_network_session.h"
 
 #include <utility>
 
 #include "base/atomic_sequence_num.h"
 #include "base/compiler_specific.h"
@@ skipping 57 matching lines @@
 
 // Number of recent connections to consider for certain thresholds
 // that trigger disabling QUIC.  E.g. disable QUIC if PUBLIC_RESET was
 // received post handshake for at least 2 of 20 recent connections.
 const int32_t kQuicMaxRecentDisabledReasons = 20;
 
 HttpNetworkSession::Params::Params()
     : client_socket_factory(NULL),
       host_resolver(NULL),
       cert_verifier(NULL),
-      ct_policy_enforcer(NULL),
       channel_id_service(NULL),
       transport_security_state(NULL),
       cert_transparency_verifier(NULL),
+      ct_policy_enforcer(NULL),

[Ryan Hamilton, 2016/06/16 03:31:04]

nullptr as long as you're here?

[Ryan Sleevi, 2016/06/16 21:29:17]

Opted not to. File consistency should reign here - and changing this file t use
nullptr entirely is outside the scope of this CL.

       proxy_service(NULL),
       ssl_config_service(NULL),
       http_auth_handler_factory(NULL),
       net_log(NULL),
       host_mapping_rules(NULL),
       socket_performance_watcher_factory(NULL),
       ignore_certificate_errors(false),
       testing_fixed_http_port(0),
       testing_fixed_https_port(0),
       enable_tcp_fast_open_for_ssl(false),
@@ skipping 313 matching lines @@
     case WEBSOCKET_SOCKET_POOL:
       return websocket_socket_pool_manager_.get();
     default:
       NOTREACHED();
       break;
   }
   return NULL;
 }
 
 }  // namespace net