Enable TLS session tickets on a per-circuit basis
TLS session tickets were disabled in #4099 (closed) to reduce the risk of tracking. Since then, circuit isolation has progressed significantly. I propose re-enabling TLS session tickets, but only for individual circuits. This will provide the connection handshake speedups while avoiding the risk of fingerprinting.