build(core): support DISABLE_TROPIC for HW tests

[romanz]

Also, set it when building with STORAGE_INSECURE_TESTING_MODE=1 (similar to DISABLE_OPTIGA).

[github-actions]

en main(all)

model	device_test	click_test	persistence_test
T2T1	test(all) main(all)	test(all) main(all)	test(all) main(all)
T3B1	test(all) main(all)	test(all) main(all)	test(all) main(all)
T3T1	test(all) main(all)	test(all) main(all)	test(all) main(all)
T3W1	test(all) main(all)	test(all) main(all)	test(all) main(all)

Latest CI run: 18965869516

[romanz]

Tested locally with:

$ STORAGE_INSECURE_TESTING_MODE=1 BOOTLOADER_DEVEL=1 BOOTLOADER_QA=1 TREZOR_MODEL=T3W1 PYOPT=0 make -C core build_firmware
$ pytest -v tests/device_tests/

[romanz]

Without this PR, secmon build fails with:

$ QUIET_MODE=1 STORAGE_INSECURE_TESTING_MODE=1 BOOTLOADER_DEVEL=1 BOOTLOADER_QA=1 TREZOR_MODEL=T3W1 PYOPT=0 make -C core build_firmware
...
scons -Q -j 12 --quiet BENCHMARK="0" BITCOIN_ONLY="0" BOOTLOADER_DEVEL="1" BOOTLOADER_QA="1" UNSAFE_FW="0" CFLAGS="-DSCM_REVISION_INIT='{0x43,0xff,0x03,0x5d,0x1e,0x3c,0x7d,0x5a,0xcd,0x89,0xca,0x41,0x13,0x62,0x04,0x85,0x6f,0x0c,0xfb,0x07,}'" CMAKELISTS="0" DISABLE_OPTIGA="0" DISABLE_TROPIC="1" HW_REVISION="" LOG_STACK_USAGE="0" MICROPY_ENABLE_SOURCE_LINE="0" PRODUCTION="0" PYOPT="0" QUIET_MODE="1" SCM_REVISION="'43ff035d1e3c7d5acd89ca41136204856f0cfb07'" STORAGE_INSECURE_TESTING_MODE="1" THP="1" TREZOR_DISABLE_ANIMATION="1" TREZOR_EMULATOR_ASAN="0" TREZOR_EMULATOR_DEBUGGABLE=0 TREZOR_MEMPERF="0" TREZOR_MODEL="T3W1" UI_PERFORMANCE_OVERLAY="0" BLOCK_ON_VCP="0" DBG_CONSOLE=""  build/secmon/secmon.bin
embed/sec/tropic/tropic.c: In function 'tropic_pin_unmask_kek':
embed/sec/tropic/tropic.c:606:3: error: static assertion failed: "R_MEM_DATA_SIZE_MAX too small"
  606 |   _Static_assert(
      |   ^~~~~~~~~~~~~~

[romanz]

It happens due to reduced PIN_MAX_TRIES (67dcf30):

// Maximum number of failed unlock attempts.
// NOTE: The PIN counter logic relies on this constant being less than or equal
// to 16.
#if USE_TROPIC && USE_OPTIGA
// If both Optiga and Tropic are used, every PIN attempt requires a stretched
// PIN slot on Optiga. This restricts the total number of PIN
// attempts.
#define PIN_MAX_TRIES 10
#else
#define PIN_MAX_TRIES 16
#endif

Whereas R_MEM_DATA_SIZE_MAX stays the same:

trezor-firmware/core/embed/sec/tropic/tropic.c

Lines 606 to 608 in fca7a25

	_Static_assert(
	R_MEM_DATA_SIZE_MAX >= PIN_MAX_TRIES * TROPIC_MAC_AND_DESTROY_SIZE,
	"R_MEM_DATA_SIZE_MAX too small");

[cepetr]

After discussion with @andrew, I prepared PR #6097, which addresses the issue with PIN_MAX_TRIES.