Enable TLS session tickets on a per-circuit basis

TLS session tickets were disabled in #4099 (closed) to reduce the risk of tracking. Since then, circuit isolation has progressed significantly. I propose re-enabling TLS session tickets, but only for individual circuits. This will provide the connection handshake speedups while avoiding the risk of fingerprinting.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information