Feature request: in sign_treehashes, only resign if the treehash does not match

[staticfloat]

We want to avoid re-signing treehashes that haven't changed, since the encrypted form is non-deterministic.

[DilumAluthge]

Cross-ref JuliaCI/julia-buildkite#215