Isolating GPU Access in its Own Process

Patricia Aas, 30 August 2018

Chromium’s process architecture has graphics access restricted to a separate GPU-process. There are several reasons why this could make sense, three common ones are: Security, Robustness and Dependency Separation.

GPU access restricted to a single process requires an efficient framework for communication over IPC from the other processes, and most likely a framework for composition of surfaces. This talk describes both the possible motivations for this kind of architecture and Chromium’s solution for the IPC framework. We will demonstrate how a multi-process program can compose into a single window on Linux.

Presented at NDC TechTown 2018

Isolating GPU Access in its Own Process from Patricia Aas