[qubes-users] Trezor error with qubes


In my last message I mentioned my attempts to start using the Trezor with qubes.

I try to follow this guide, from the official trezor website: Qubes OS - Trezor Wiki

I use the sys-usb based on debian-10 and tried the same with sys-usb based on debian-10-minimal with similar error. My online AppVM in anon-whonix.

After I finished the procedures described in the guide, I installed the trezor Bridge and Udev rules in the sys-usb, and the Trezor Suite in the anon-whonix, with sudo dpkg -i required-package.

Once I start both sys-usb and anon-whonix and attach the trezor-T I get following error (suite is seen by the sys-usb):

2021-08-31T14:38:06.967Z - ERROR(process-trezord): Status error: request to failed, reason: connect ECONNREFUSED

Do you see any workarounds to make it work?

have you seen this?

have you seen this?

Actually I did do the process based on this guide. Everything is set up except bridge verification. The issue is that once I download the bridge from Trezor Wallet I cannot verify it with gpg2 --verify It returns:

[user@fedora-33-min-trezor ~]$ gpg2 --verify trezor-bridge-2.0.27-1.x86_64.rpm
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.

If I try to use rpm directly, it returns this:

[user@fedora-33-min-trezor ~]$ sudo rpm -i trezor-bridge-2.0.27-1.x86_64.rpm
warning: trezor-bridge-2.0.27-1.x86_64.rpm: Header V4 RSA/SHA256 Signature, key ID b9a02a3d: NOKEY
  package trezor-bridge-2.0.27-1.x86_64 does not verify: Header V4 RSA/SHA256 Signature, key ID b9a02a3d: NOKEY

Fedora min template has following packages installed: gnome-keyring qubes-core-agent-nautilus qubes-mgmt-salt-vm-connector qubes-usb-proxy and of course trezor-common

Ah, I think I forgot to verify. You need to install the public key so
you can verify the trezor-bridge RPM file.

Unfortunately I don't remember how to do this.