Add a DevTools warning for a missing subjectAltName

components/security_state/core/security_state.h

Index: components/security_state/core/security_state.h
diff --git a/components/security_state/core/security_state.h b/components/security_state/core/security_state.h
index 7de0fa7437b5d1961a67425d30069ce050207ce7..6c7194cfcbc102ca6d3966942ab1809c8922afdd 100644
--- a/components/security_state/core/security_state.h
+++ b/components/security_state/core/security_state.h
@@ -142,6 +142,10 @@ struct SecurityInfo {
 
   // True if the page displayed credit card field on an HTTP page.
   bool displayed_credit_card_field_on_http;
+
+  // True if a subjectAlternativeName extension is missing from the
+  // server's certificate.

[elawrence, 2017/03/21 16:22:54]

Maybe "True if the server's certificate does not contain a
subjectAlternativeName extension" or "True if the server's certificate lacks a
subjectAlternativeName extension"?

Otherwise, the article "a" and "is missing" are slightly ambiguous.

+  bool san_is_missing;

[elawrence, 2017/03/21 16:22:54]

similarly, maybe "cert_lacks_SAN"?

[Ryan Sleevi, 2017/03/21 16:41:41]

Was trying to match the naming style for sha1_in_chain

I take it the concern is that "chain" links it to cert, but san_is_missing
doesn't clearly indicate a cert-related issue?

cert_missing_subject_alt_name ?

[elawrence, 2017/03/21 16:49:04]

SGTM

 };
 
 // Contains the security state relevant to computing the SecurityInfo