DEV Community: powergr The latest articles on DEV Community by powergr (@powergr). https://dev.to/powergr https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1682411%2F12e13538-b4f0-462e-a2bf-1ea82581ee66.jpg DEV Community: powergr https://dev.to/powergr en Building the Ultimate Local-First Privacy Suite with Rust & Tauri v2 powergr Tue, 27 Jan 2026 20:24:21 +0000 https://dev.to/powergr/building-the-ultimate-local-first-privacy-suite-with-rust-tauri-v2-2eam https://dev.to/powergr/building-the-ultimate-local-first-privacy-suite-with-rust-tauri-v2-2eam <p>In the world of privacy tools, there is often a trade-off: <strong>Security vs. Convenience</strong>. You either get a command-line tool that is impossible to use or a slick cloud app that owns your encryption keys.</p> <p>With the release of <strong>QRE Privacy Toolkit v2.5</strong>, we aimed to break that compromise.</p> <p>We pivoted from our experimental roots (originally "Quantum Locker") to build a practical <strong>Swiss Army Knife for Digital Privacy</strong>. It runs natively on Windows, macOS, Linux, and <strong>Android</strong>, entirely offline, with zero servers.</p> <p>Here is a deep dive into how we built it, the technical hurdles we overcame moving from Desktop to Mobile, and the Rust code that powers it.</p> <h2> 1. The Core Philosophy: Local-First </h2> <p>Most modern apps are "Cloud-First." They verify your password on a server, store your vault in an S3 bucket, and sync via APIs.</p> <p>QRE Privacy Toolkit is <strong>Local-First</strong>.</p> <ul> <li> <strong>Storage:</strong> Your data lives in <code>keychain.json</code> on your device.</li> <li> <strong>Crypto:</strong> AES-256-GCM encryption happens on your CPU.</li> <li> <strong>Sync:</strong> None. We don't want your data.</li> </ul> <p>To achieve this cross-platform performance without rewriting the app three times (Swift, Kotlin, C#), we chose <strong>Tauri v2</strong>. Tauri allows us to write the logic in <strong>Rust</strong> (for safety and speed) and the UI in <strong>React/TypeScript</strong>.</p> <h2> 2. Challenge #1: Breaking the 4GB RAM Limit </h2> <p>In early versions, QRE loaded files into memory to encrypt them. This was fine for PDFs, but if a user tried to encrypt a 10GB video backup, the app crashed (OOM).</p> <p><strong>The Solution: Chunked Streaming Encryption</strong></p> <p>In v2.5, we introduced the <strong>V5 Streaming Engine</strong>. Instead of reading the whole file, we read 1MB chunks, compress them, encrypt them with a rolling nonce, and write them to disk immediately.</p> <p>Here is the Rust logic for handling unlimited file sizes with constant RAM usage:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="c1">// src-tauri/src/crypto_stream.rs</span> <span class="k">pub</span> <span class="k">fn</span> <span class="nf">encrypt_file_stream</span><span class="p">(</span> <span class="n">input_path</span><span class="p">:</span> <span class="o">&amp;</span><span class="nb">str</span><span class="p">,</span> <span class="n">output_path</span><span class="p">:</span> <span class="o">&amp;</span><span class="nb">str</span><span class="p">,</span> <span class="n">master_key</span><span class="p">:</span> <span class="o">&amp;</span><span class="n">MasterKey</span><span class="p">,</span> <span class="c1">// ... args ...</span> <span class="p">)</span> <span class="k">-&gt;</span> <span class="nb">Result</span><span class="o">&lt;</span><span class="p">()</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">input_file</span> <span class="o">=</span> <span class="nn">BufReader</span><span class="p">::</span><span class="nf">new</span><span class="p">(</span><span class="nn">File</span><span class="p">::</span><span class="nf">open</span><span class="p">(</span><span class="n">input_path</span><span class="p">)</span><span class="o">?</span><span class="p">);</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">output_file</span> <span class="o">=</span> <span class="nn">BufWriter</span><span class="p">::</span><span class="nf">new</span><span class="p">(</span><span class="nn">File</span><span class="p">::</span><span class="nf">create</span><span class="p">(</span><span class="n">output_path</span><span class="p">)</span><span class="o">?</span><span class="p">);</span> <span class="c1">// 1MB Chunk Buffer</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">buffer</span> <span class="o">=</span> <span class="nd">vec!</span><span class="p">[</span><span class="mi">0u8</span><span class="p">;</span> <span class="mi">1024</span> <span class="o">*</span> <span class="mi">1024</span><span class="p">];</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">chunk_index</span><span class="p">:</span> <span class="nb">u64</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">loop</span> <span class="p">{</span> <span class="k">let</span> <span class="n">bytes_read</span> <span class="o">=</span> <span class="n">input_file</span><span class="nf">.read</span><span class="p">(</span><span class="o">&amp;</span><span class="k">mut</span> <span class="n">buffer</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="k">if</span> <span class="n">bytes_read</span> <span class="o">==</span> <span class="mi">0</span> <span class="p">{</span> <span class="k">break</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// EOF</span> <span class="k">let</span> <span class="n">chunk_data</span> <span class="o">=</span> <span class="o">&amp;</span><span class="n">buffer</span><span class="p">[</span><span class="o">..</span><span class="n">bytes_read</span><span class="p">];</span> <span class="c1">// 1. Compress (Zstd)</span> <span class="k">let</span> <span class="n">compressed</span> <span class="o">=</span> <span class="nf">compress_chunk</span><span class="p">(</span><span class="n">chunk_data</span><span class="p">,</span> <span class="n">level</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="c1">// 2. Derive Unique Nonce (Base + Index)</span> <span class="c1">// Prevents pattern analysis on identical chunks</span> <span class="k">let</span> <span class="n">nonce</span> <span class="o">=</span> <span class="nf">calculate_nonce</span><span class="p">(</span><span class="o">&amp;</span><span class="n">base_nonce</span><span class="p">,</span> <span class="n">chunk_index</span><span class="p">);</span> <span class="c1">// 3. Encrypt (AES-256-GCM)</span> <span class="k">let</span> <span class="n">ciphertext</span> <span class="o">=</span> <span class="n">cipher</span><span class="nf">.encrypt</span><span class="p">(</span><span class="n">nonce</span><span class="p">,</span> <span class="n">compressed</span><span class="nf">.as_ref</span><span class="p">())</span><span class="o">?</span><span class="p">;</span> <span class="c1">// 4. Write [Size][Data] to stream</span> <span class="n">output_file</span><span class="nf">.write_all</span><span class="p">(</span><span class="o">&amp;</span><span class="p">(</span><span class="n">ciphertext</span><span class="nf">.len</span><span class="p">()</span> <span class="k">as</span> <span class="nb">u32</span><span class="p">)</span><span class="nf">.to_le_bytes</span><span class="p">())</span><span class="o">?</span><span class="p">;</span> <span class="n">output_file</span><span class="nf">.write_all</span><span class="p">(</span><span class="o">&amp;</span><span class="n">ciphertext</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="n">chunk_index</span> <span class="o">+=</span> <span class="mi">1</span><span class="p">;</span> <span class="p">}</span> <span class="nf">Ok</span><span class="p">(())</span> <span class="p">}</span> </code></pre> </div> <p>This ensures that whether you encrypt a 1MB photo or a 1TB drive image, the app never uses more than ~50MB of RAM.</p> <h2> 3. Challenge #2: The Android Filesystem Nightmare </h2> <p>Porting a desktop Rust app to Android exposed a major platform difference: <strong>File Paths vs. Content URIs.</strong></p> <p>On Desktop, you open <code>C:\Users\Docs\file.txt</code>.<br> On Android, you get <code>content://com.android.providers.media.documents/document/image%3A1234</code>.</p> <p>Standard Rust functions like <code>std::fs::File::open()</code> cannot read Android Content URIs.</p> <p><strong>The Solution: A Hybrid Input System</strong></p> <p>We implemented a logic fork in our Tauri command handler.</p> <ol> <li> <strong>Desktop:</strong> We pass the file path string. Rust opens it efficiently.</li> <li> <strong>Android:</strong> The React frontend reads the file into a byte array (<code>Uint8Array</code>) using Tauri's filesystem plugin and passes the <strong>raw bytes</strong> to Rust. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="c1">// src-tauri/src/commands.rs</span> <span class="nd">#[tauri::command]</span> <span class="k">pub</span> <span class="k">async</span> <span class="k">fn</span> <span class="nf">lock_file</span><span class="p">(</span> <span class="n">app</span><span class="p">:</span> <span class="n">AppHandle</span><span class="p">,</span> <span class="n">state</span><span class="p">:</span> <span class="nn">tauri</span><span class="p">::</span><span class="n">State</span><span class="o">&lt;</span><span class="nv">'_</span><span class="p">,</span> <span class="n">SessionState</span><span class="o">&gt;</span><span class="p">,</span> <span class="n">file_paths</span><span class="p">:</span> <span class="nb">Vec</span><span class="o">&lt;</span><span class="nb">String</span><span class="o">&gt;</span><span class="p">,</span> <span class="n">keyfile_path</span><span class="p">:</span> <span class="nb">Option</span><span class="o">&lt;</span><span class="nb">String</span><span class="o">&gt;</span><span class="p">,</span> <span class="n">keyfile_bytes</span><span class="p">:</span> <span class="nb">Option</span><span class="o">&lt;</span><span class="nb">Vec</span><span class="o">&lt;</span><span class="nb">u8</span><span class="o">&gt;&gt;</span> <span class="c1">// &lt;--- The Hybrid Solution</span> <span class="p">)</span> <span class="k">-&gt;</span> <span class="n">CommandResult</span><span class="o">&lt;</span><span class="nb">Vec</span><span class="o">&lt;</span><span class="n">BatchItemResult</span><span class="o">&gt;&gt;</span> <span class="p">{</span> <span class="c1">// Logic:</span> <span class="c1">// If we are on Android, 'keyfile_bytes' will contain data.</span> <span class="c1">// If we are on Desktop, we use 'keyfile_path' to load it from disk.</span> <span class="k">let</span> <span class="n">keyfile_hash</span> <span class="o">=</span> <span class="k">if</span> <span class="k">let</span> <span class="nf">Some</span><span class="p">(</span><span class="n">bytes</span><span class="p">)</span> <span class="o">=</span> <span class="n">keyfile_bytes</span> <span class="p">{</span> <span class="c1">// Handle Android (Raw Data)</span> <span class="nn">sha2</span><span class="p">::</span><span class="nn">Sha256</span><span class="p">::</span><span class="nf">digest</span><span class="p">(</span><span class="o">&amp;</span><span class="n">bytes</span><span class="p">)</span><span class="nf">.to_vec</span><span class="p">()</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">// Handle Desktop (File Path)</span> <span class="nn">utils</span><span class="p">::</span><span class="nf">process_keyfile</span><span class="p">(</span><span class="n">keyfile_path</span><span class="p">)</span><span class="o">?</span> <span class="p">};</span> <span class="c1">// ... proceed to encryption ...</span> <span class="p">}</span> </code></pre> </div> <p>This allowed us to maintain a single codebase while respecting the strict sandboxing of Android 11+.</p> <h2> 4. Privacy Tool Spotlight: The Breach Check </h2> <p>One of the new tools in v2.5 is the <strong>Password Breach Checker</strong>. We wanted users to check if their password was leaked (using the HaveIBeenPwned database), but we refused to send users' passwords to any server.</p> <p><strong>The Implementation: k-Anonymity</strong></p> <p>We used a technique called <strong>k-Anonymity</strong>.</p> <ol> <li> We hash the password locally (SHA-1).</li> <li> We take the <strong>first 5 characters</strong> of the hash.</li> <li> We send <em>only</em> those 5 characters to the API.</li> <li> The API returns ~500 hashes that start with those 5 characters.</li> <li> We scan the list locally to see if the full hash matches.</li> </ol> <p><strong>The Code:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="c1">// src-tauri/src/breach.rs</span> <span class="k">pub</span> <span class="k">async</span> <span class="k">fn</span> <span class="nf">check_pwned</span><span class="p">(</span><span class="n">password</span><span class="p">:</span> <span class="o">&amp;</span><span class="nb">str</span><span class="p">)</span> <span class="k">-&gt;</span> <span class="nb">Result</span><span class="o">&lt;</span><span class="n">BreachResult</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// 1. Hash Locally</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">hasher</span> <span class="o">=</span> <span class="nn">Sha1</span><span class="p">::</span><span class="nf">new</span><span class="p">();</span> <span class="n">hasher</span><span class="nf">.update</span><span class="p">(</span><span class="n">password</span><span class="nf">.as_bytes</span><span class="p">());</span> <span class="k">let</span> <span class="n">hash</span> <span class="o">=</span> <span class="nd">format!</span><span class="p">(</span><span class="s">"{:X}"</span><span class="p">,</span> <span class="n">hasher</span><span class="nf">.finalize</span><span class="p">());</span> <span class="c1">// 2. Split Hash (k-Anonymity)</span> <span class="k">let</span> <span class="n">prefix</span> <span class="o">=</span> <span class="o">&amp;</span><span class="n">hash</span><span class="p">[</span><span class="mi">0</span><span class="o">..</span><span class="mi">5</span><span class="p">];</span> <span class="c1">// Send this</span> <span class="k">let</span> <span class="n">suffix</span> <span class="o">=</span> <span class="o">&amp;</span><span class="n">hash</span><span class="p">[</span><span class="mi">5</span><span class="o">..</span><span class="p">];</span> <span class="c1">// Keep this secret</span> <span class="c1">// 3. Query API</span> <span class="k">let</span> <span class="n">url</span> <span class="o">=</span> <span class="nd">format!</span><span class="p">(</span><span class="s">"https://api.pwnedpasswords.com/range/{}"</span><span class="p">,</span> <span class="n">prefix</span><span class="p">);</span> <span class="k">let</span> <span class="n">response</span> <span class="o">=</span> <span class="n">client</span><span class="nf">.get</span><span class="p">(</span><span class="o">&amp;</span><span class="n">url</span><span class="p">)</span><span class="nf">.send</span><span class="p">()</span><span class="k">.await</span><span class="o">?</span><span class="nf">.text</span><span class="p">()</span><span class="k">.await</span><span class="o">?</span><span class="p">;</span> <span class="c1">// 4. Verify Locally</span> <span class="k">for</span> <span class="n">line</span> <span class="k">in</span> <span class="n">response</span><span class="nf">.lines</span><span class="p">()</span> <span class="p">{</span> <span class="k">let</span> <span class="n">parts</span><span class="p">:</span> <span class="nb">Vec</span><span class="o">&lt;&amp;</span><span class="nb">str</span><span class="o">&gt;</span> <span class="o">=</span> <span class="n">line</span><span class="nf">.split</span><span class="p">(</span><span class="sc">':'</span><span class="p">)</span><span class="nf">.collect</span><span class="p">();</span> <span class="k">if</span> <span class="n">parts</span><span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="o">==</span> <span class="n">suffix</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">Ok</span><span class="p">(</span><span class="n">BreachResult</span> <span class="p">{</span> <span class="n">found</span><span class="p">:</span> <span class="k">true</span><span class="p">,</span> <span class="n">count</span><span class="p">:</span> <span class="n">parts</span><span class="p">[</span><span class="mi">1</span><span class="p">]</span><span class="nf">.parse</span><span class="p">()</span><span class="o">?</span> <span class="p">});</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">Ok</span><span class="p">(</span><span class="n">BreachResult</span> <span class="p">{</span> <span class="n">found</span><span class="p">:</span> <span class="k">false</span><span class="p">,</span> <span class="n">count</span><span class="p">:</span> <span class="mi">0</span> <span class="p">})</span> <span class="p">}</span> </code></pre> </div> <p>The server never sees the password, yet the user gets an accurate result.</p> <h2> 5. Metadata Scrubbing: Sanitizing Archives </h2> <p>Users often zip photos before sending them. However, standard ZIP tools preserve timestamps, file comments, and sometimes User IDs (UID/GID), which can fingerprint the creator.</p> <p>In the <strong>Metadata Cleaner</strong> tool, we implemented a "Repack Strategy." We don't just modify the zip; we stream the content into a <strong>brand new container</strong> with sanitized headers.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="c1">// src-tauri/src/cleaner.rs</span> <span class="k">fn</span> <span class="nf">clean_zip_metadata</span><span class="p">(</span><span class="n">input</span><span class="p">:</span> <span class="o">&amp;</span><span class="n">Path</span><span class="p">,</span> <span class="n">output</span><span class="p">:</span> <span class="o">&amp;</span><span class="n">Path</span><span class="p">)</span> <span class="k">-&gt;</span> <span class="nb">Result</span><span class="o">&lt;</span><span class="p">()</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">zip_writer</span> <span class="o">=</span> <span class="nn">zip</span><span class="p">::</span><span class="nn">ZipWriter</span><span class="p">::</span><span class="nf">new</span><span class="p">(</span><span class="nn">File</span><span class="p">::</span><span class="nf">create</span><span class="p">(</span><span class="n">output</span><span class="p">)</span><span class="o">?</span><span class="p">);</span> <span class="c1">// Wipe Global Comment</span> <span class="n">zip_writer</span><span class="nf">.set_comment</span><span class="p">(</span><span class="s">""</span><span class="p">);</span> <span class="k">for</span> <span class="n">i</span> <span class="k">in</span> <span class="mi">0</span><span class="o">..</span><span class="n">archive</span><span class="nf">.len</span><span class="p">()</span> <span class="p">{</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">file</span> <span class="o">=</span> <span class="n">archive</span><span class="nf">.by_index</span><span class="p">(</span><span class="n">i</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="c1">// Sanitize File Options</span> <span class="k">let</span> <span class="n">options</span> <span class="o">=</span> <span class="nn">SimpleFileOptions</span><span class="p">::</span><span class="nf">default</span><span class="p">()</span> <span class="nf">.compression_method</span><span class="p">(</span><span class="n">file</span><span class="nf">.compression</span><span class="p">())</span> <span class="nf">.unix_permissions</span><span class="p">(</span><span class="mi">0o755</span><span class="p">);</span> <span class="c1">// Reset Permissions/UIDs</span> <span class="c1">// Copy raw data, leaving old metadata behind</span> <span class="n">zip_writer</span><span class="nf">.start_file</span><span class="p">(</span><span class="n">file</span><span class="nf">.name</span><span class="p">(),</span> <span class="n">options</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="nn">std</span><span class="p">::</span><span class="nn">io</span><span class="p">::</span><span class="nf">copy</span><span class="p">(</span><span class="o">&amp;</span><span class="k">mut</span> <span class="n">file</span><span class="p">,</span> <span class="o">&amp;</span><span class="k">mut</span> <span class="n">zip_writer</span><span class="p">)</span><span class="o">?</span><span class="p">;</span> <span class="p">}</span> <span class="nf">Ok</span><span class="p">(())</span> <span class="p">}</span> </code></pre> </div> <h2> 6. What's Next? </h2> <p>QRE Privacy Toolkit v2.5 includes 9 tools: <strong>File Encryption, Password Vault, Secure Notes, Private Bookmarks, Clipboard Manager, Metadata Cleaner, Breach Check, QR Generator, and Secure Shredder.</strong></p> <p>We are currently working on <strong>v2.6</strong>, which will explore Steganography (hiding encrypted data inside images) and TOTP Authenticator support.</p> <h3> <strong>Try it Yourself</strong> </h3> <p>The project is 100% open source. You can audit the code or download the latest release for your platform.</p> <p>👉 <strong><a href="https://github.com/powergr/qre-privacy-toolkit" rel="noopener noreferrer">View on GitHub</a></strong><br> 👉 <strong><a href="https://github.com/powergr/qre-privacy-toolkit/releases" rel="noopener noreferrer">Download v2.5</a></strong></p> rust tauri opensource privacy