How to set up the trezor bridge in 4.1

This command returns: No such file or directory
And these return with PERMISSION DENIED on sys-usb

ln -s /rw/config/trezor/trezord /usr/bin/trezord
ln -s /rw/config/trezor/50-trezor.rules /lib/udev/rules.d/50-trezor.rules
ln -s /rw/config/trezor/trezord.service /usr/lib/systemd/system/trezord.service
ln -s /rw/config/trezor/qubes.Trezor /etc/qubes-rpc/qubes.Trezor
# add user that systemctl service is configured to use
useradd trezord
systemctl start trezord

The issue im having is that i get to he web wallet and it even shows my device name but nothing loads, cannot open any wallets its just stuck on loading forever. Any ideas??

Also, question. I do it in an APPVM is that an issue? And then I pass Trezor from sys-usb to the APPVM

This really is getting on my nerves it has been 5 days and i have not been able to use my trezor with qubes.

This command returns: No such file or directory
And these return with PERMISSION DENIED on sys-usb

These should be pasted into /rw/config/rc.local, which means they will run as root when the VM starts up (so shouldn’t have permission denied), and you should put the files into /rw/config/trezor/ that it makes links to.

Also, question. I do it in an APPVM is that an issue? And then I pass Trezor from sys-usb to the APPVM

Yes, this is an issue. The whole point of this setup is that the usb device passthrough is complicated and doesn’t work reliably for many kinds of devices. The trezor is one like device that cannot be passed through. Because the client (trezor suite, trezorctl, electrum, etc.) communicates with the bridge (trezord) via TCP, we don’t need to use a usb passthrough. Instead we run the bridge in the usb vm, run the client in an app vm, and use TCP sockets to send the client<->bridge communication through qubes-rpc.

I would update the instructions in the original post to say “First you need the bridge software in sys-usb.” to make that part more clear. I’m new to the forums, and it looks like I can’t edit the original post.

I get it but how do I install bridge in sys-usb then? Could you try explaining it to my further or in private? If it works well I’m willing to pay u for your time.

The steps are in the original post. To summarize, you need to

  • get the RPM
  • install it
  • copy its files (50-trezor.rules, trezord, trezord.service) into /rw/config/trezor
  • create the qubes.Trezor rpc script
  • add the lines to /rw/config/rc.local to make the symbolic links and start the trezord service
    With that done, trezord should be running in sys-usb whenever you start it up.

Then in dom0, you need to make the rpc policy, so that requests from the client will be allowed.

And in the client you need to add the line to /rw/config/rc.local that listens on port 21325 and forwards TCP packets in the rpc request.

Is it clear?