Add install-time SDM signature verification.

SDM is a new file format that contains the cloud compilation artifacts.
As a requirement, the SDM file should be signed with the same key as
the apk.

This CL adds the SDM signature verification. If the verification fails,
the package manager will fail the installation.

Bug: 377474232
Change-Id: Ife6ee0fe10c9cee722705ef9f7497028e22036ff
Test: Installed app signed with an incorrect key and verified that
  INSTALL_FAILED_INVALID_APK is thrown
Flag: android.content.pm.cloud_compilation_verification