It works without issues. You can make it work following instruction on Trezor’s official web site: Installing Trezor Suite on Linux plus combine it with findings in this thread here: USBIP protocol errors
You basically need default sys-usb (no need for customized template where we were previously installing trezor-bridge, udev.rules and socat)
The rest of tools will be in template and TrezorSuite AppVM.
This is what I did:
- clone whonix-ws > wws17-ts and install
trezorpackage in it - create
TrezorSuiteappVM on updated template in step 1 - download and transfer
TrezorSuite*.AppImageandudev.rules(51-trezor.rules) to created appVM - open terminal in
TrezorSuite
- move
51-trezor.rulesto/rw/config/ - create
/rw/config/trezord.servicewith following content:
[Unit]
Description=Trezor Bridge
After=network.target
[Service]
Type=simple
ExecStart=/home/user/squashfs-root/resources/bin/bridge/trezord -r=false
User=user
Restart=always
RestartSec=5
[Install]
WantedBy=multi-user.target
- modify
/rw/config/rc.localwith this content:
modprobe vhci-hcd # Only if AppVM is running as PVH
cp /rw/config/51-trezor.rules /etc/udev/rules.d/51-trezor.rules
cp /rw/config/trezord.service /etc/systemd/system/trezord.service
systemctl enable --now trezord
- In case you were using
trezor-bridgeinsys-usbthere was file/etc/qubes-rpc/policy/trezord-serviceindom0which is not needed any more (remove it). - and that should be all you need
- restart
TrezorSuiteappVM - unlock your HWW
- attach it to
TrezorSuiteappVM - you should be now able to work with HWW in TrezorSuite application
- profit!
share as you like and 
me a coffee @ smrtak@fountain.fm 