1/n: Add ClientMonitors for authenticatorId invalidation

InvalidationRequesterClient (for requesting other clients to
invalidate) will be fully implemented in subsequent CL's.

InvalidationClient (for requesting HALs to invalidate authenticatorId)
should be complete at this point.

Also updates BiometricUtils to persist a "invalidationInProgress"
flag on-disk for each <sensorId, userId> pair.

Bug: 159667191
Test: No effect on existing devices
Test: Existing enrollments not affected

Change-Id: I9eeb802b556ba86568cf41b456a4ceab4b896ef0