[meta] Move all devtools UI out of the parent process into a privileged content process
Categories
(DevTools :: General, task)
Tracking
(Performance Impact:medium)
| Performance Impact | medium |
People
(Reporter: mstange, Unassigned)
References
(Depends on 2 open bugs, Blocks 1 open bug)
Details
(Keywords: meta, perf:responsiveness, sec-want)
The devtools currently render inside the parent process. This is bad for performance reasons: It means that the devtools have the potential to slow down the operation of the entire browser as long as any devtools UI is displayed anywhere, even when the user isn't interacting with it at the moment. For example, scrolling regular web pages can jank at random times when the browser error console window is open in the background. Furthermore, interactions with the devtools themselves are less smooth than they could be, for example because async scrolling cannot fully be taken advantage of.
In my personal experience, I encounter devtools-related browser slowdowns mostly when I forget to close a devtools tab or window and focus on something else. Then, at some point, I get curious why my browser is randomly slower than usual, and then I find devtools code in the profiles.
Here's another example I just encountered: https://perfht.ml/37ajBUN
I happened to have about:debugging open in a background tab and had forgotten about it. But every 5 seconds, the whole browser would freeze for ~200ms, because about:debugging was running code on the main thread.
Rather than fixing these issues on a case-by-case basis, I think UI-related devtools code should move out of the parent process entirely. The parent process main thread is a critical resource that simply cannot be blocked for more than a few milliseconds at a time without impacting overall browser performance.
|
||
Updated•4 years ago
|
|
||
Updated•4 years ago
|
|
||
Comment 1•4 years ago
|
||
Bugbug thinks this bug should belong to this component, but please revert this change in case of error.
|
||
Comment 2•3 years ago
|
||
sec-want because when DevTool is out of the Parent Process we should be able to be more conservative with the JIT used there, which would eliminate attack surface.
|
||
Updated•3 years ago
|
|
||
Updated•2 years ago
|
|
||
Comment 3•2 years ago
|
||
(In reply to Tom Ritter [:tjr] from comment #2)
sec-want because when DevTool is out of the Parent Process we should be able to be more conservative with the JIT used there, which would eliminate attack surface.
Tom, Could we possibly disable the JIT? I was wondering how much we benefit from it? We have document and common js modules. I don't know if JIT is enabled in both cases. We have DAMP test on talos to quickly assert the impact if that's easy to turn it on/off.
On a more positive side, I've built a proof of concept.
The tools renders, that's already a big deal as we might still involve legacy xul codepaths.
I suspect we will have various edgecases with tooltips, popups.
For example, get crashes when the autocomplete popup kicks in.
A significant part of this PoC is to make the UI communicate with the parent process via a JSWindow Actor
in order to "connect" to the DevTools Server which has to run from the parent process.
But the real blocker will most likely be about tests.
Most of our tests are browser mochitests. They all expect DevTools UI documents to run in the parent process and have raw access to the Toolbox, all the panels (inspector, console,...) and their DOM documents.
Migrating them to use SpecialPowser.spawn will be an epic quest.
I'll clean up a few things in my PoC and try to shape a plan to land a preffed off version of it.
|
|
||
Comment 4•2 years ago
|
||
(In reply to Alexandre Poirot [:ochameau] from comment #3)
(In reply to Tom Ritter [:tjr] from comment #2)
sec-want because when DevTool is out of the Parent Process we should be able to be more conservative with the JIT used there, which would eliminate attack surface.
Tom, Could we possibly disable the JIT?
Yeah - that would be the goal - to disable it entirely =)
|
||
Updated•2 years ago
|
|
||
Comment 5•1 year ago
|
||
(In reply to Tom Ritter [:tjr] from comment #4)
(In reply to Alexandre Poirot [:ochameau] from comment #3)
(In reply to Tom Ritter [:tjr] from comment #2)
sec-want because when DevTool is out of the Parent Process we should be able to be more conservative with the JIT used there, which would eliminate attack surface.
Tom, Could we possibly disable the JIT?
Yeah - that would be the goal - to disable it entirely =)
Devtools is a pretty performance-sensitive area of the browser frontend. I would expect unilaterally disabling the JIT across all of it would severely degrade the experience for users. Am I missing something or do you have any more detail on this idea?
|
|
||
Comment 6•1 year ago
|
||
(In reply to Doug Thayer [:dthayer] (he/him) from comment #5)
(In reply to Tom Ritter [:tjr] from comment #4)
(In reply to Alexandre Poirot [:ochameau] from comment #3)
(In reply to Tom Ritter [:tjr] from comment #2)
sec-want because when DevTool is out of the Parent Process we should be able to be more conservative with the JIT used there, which would eliminate attack surface.
Tom, Could we possibly disable the JIT?
Yeah - that would be the goal - to disable it entirely =)
Devtools is a pretty performance-sensitive area of the browser frontend. I would expect unilaterally disabling the JIT across all of it would severely degrade the experience for users. Am I missing something or do you have any more detail on this idea?
We wouldn't/won't disable the JIT for DevTools. We haven't disabled any of the JIT levels in the parent process for this reason. But if DevTools goes into a Privileged Content Process, and its no longer running in the parent process, we can disable some or all JIT levels in the parent. (But leave them in the Devtools process.)
|
|
||
Comment 7•1 year ago
|
||
Ah okay - I must have interpreted "there" as referring to devtools instead of the parent process. Thank you for clarifying!
Side note: have we looked into what the performance losses look like for disabling the JIT in the parent process (once we ignore devtools)?
Description
•