Remote execution: TLS support for execution service

The gRPC channel to the execution server is currently always insecure/unencrypted. Configuration keys for server and client certificates need to be supported, similar to artifact/CAS server configuration.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information