Pubkey might used for server auth(like OpenRCT2).
If that is possible, it can be used for server access whitelist.
(in this case, of course, pubkeys should saved like global config, not savefile)

Now players can be uniquely identified by servers. Whether this is desired, or exactly the opposite is up to debate. While I think this is nice feature, I guess it might raise privacy concerns. Currently in this PR pubkeys are not shared to other clients, but if we allow multiple keys in company it would be useful, as client could store some sort of "friends" list, consisting of pubkey and last known readable name. You could then grant access to your company to a friend, even if he's offline at the moment.
In future, masterserver could be also extended to share list of connected clients pubkeys, so we could have an icon on server list indicating "some friends are playing there".
If pubkeys won't be shared with other clients, then these two features I mentioned won't be possible, so I think sharing keys is preferable even if it makes privacy concerns even bigger, as clients could be also uniquely tracked by other clients. To alleviate that, I propose adding optional 'privacy' mode, which won't store one keypair, but random secret material from which ephemeral pubkeys are generated based on some server characteristics (server address, or something like that, TBD). That would break friends list features, but basic pubkey authorization will still work.

Basically, we need a plan where we want to head with this. This is a bit unusual for OpenTTD, as mostly we just do stuff and see where we end up :P But as we are touching network protocol and the way servers operate, this requires some planning ahead. As many of the things you mention are valid, but are also point-solutions, which currently don't fit in a bigger picture (as that bigger picture is lacking).

Making a plan does not mean we have to stick to it, of course, but it gives a direction to aim and to evaluate extensions to this idea. For now I think this PR should remain as small as possible, with just some basic proof-of-value code to show what this can do. The plan can extend on that, and later PRs can start implementing that plan.

As example, whether we need an "anonymous mode" strongly depends on how we want to use this. Maybe we find out that, because of the plan, a client should always generate an unique public/secret key pair for every unique server it connects to. Or maybe per cluster. But to evaluate this, we need a bigger vision :)

If you feel up for it, please draft up a plan (in a gist or something; and I mean text here, not code). It should loosely define an end-state, how we see the multiplayer eco-system work. This allows server-operators (and players) to contribute to the plan, before we make choices :) Let me know if you feel up for it!

The above request of mine has been done and resulted in a Discussion page: #8420

Assuming this PR will represent Phase 1 of the above discussion (and this is not a black&white thing of course), already a few requests for this PR (of course Phase 1 can change based on feedback, but I doubt it will change heavily):

• Could you put in a single commit the adding of the 3rdparty library? That makes it easier to see what code in OpenTTD itself changed .. lot of scrolling now :D (maybe including the CMake changes .. dunno .. your call)
• Can you take a look at the warnings it is throwing? Maybe we can upstream fixes, maybe we can fix it locally.
• I think it would be good if we put crypto-related functions in their own file, so later phases can more easily manage them. network_crypto.cpp or something. I dunno .. not even sure it is a good idea. But it is now mixed in with the rest, which is a bit hard. Maybe we can mix it with the function that will be created for access-list? Dunno .. something to think about at least :)

And of course it might be good to scan if we can make changes already that make other phases easier to implement.

Owh, and in case this wasn't clear yet: I really like what you have done here :D Now we all have to do is bring it home ;)

Cheers!

Some commit splitting, pubkey based rcon, pubkey based admin port, keymaterial stored in .cfg, moved KEYAUTH step before game password, keypairs generated during connecting in preparation for privacy features, libhydrogen compiles as .c to avoid warnings.
Quick example admin port implementation there: Milek7/libottdadmin2@4590a89
More work to follow later (ie. identity manager, company ACLs, game ACLs, privacy modes, split crypto into separate file).

While there's still some work in this PR, I meanwhile realized that security model achieved by NEED_KEYAUTH/KEYAUTH packets on unencrypted connection is pretty weak. Discussion here: https://gist.github.com/Milek7/8482c4e87947f4748aea5d96b3e89b80