Isolating GPU Access in its Own Process
Composing Using Multiple Processes (NDC TechTown 2018)
Patricia Aas, 30 August 2018
Chromium’s process architecture has graphics access restricted to a separate GPU-process. There are several reasons why this could make sense, three common ones are: Security, Robustness and Dependency Separation.
GPU access restricted to a single process requires an efficient framework for communication over IPC from the other processes, and most likely a framework for composition of surfaces. This talk describes both the possible motivations for this kind of architecture and Chromium’s solution for the IPC framework. We will demonstrate how a multi-process program can compose into a single window on Linux.
Presented at NDC TechTown 2018