Add package to appops state earlier

Use the same entry point that the permission manager service uses when
a package is being installed. This is needed since the package added
broadcast and the non broadcast based PackageMonitor mechanism are both
invoked later than the permission manager service entry point. It had
been observed installed apps were already executing code before the
former two callbacks invoked leading to appop checks from other services
that the app had interacted with or test apps attempting to mutate appop
state.

Test: CtsAppOpsTestCases
Bug: 388994751
Flag: EXEMPT bugfix
Change-Id: I65b9f446c136d37633a8d1540cbced972678e61d