QUIC10GC-IP Core Datasheet

 

General Description. 2

Application Example. 3

Functional Description. 4

·       Set parameters. 9

·       Open and close a secure connection. 11

·       Handshake process. 12

·       0-RTT handshake process. 15

·       User Tx interface. 17

·       User Rx interface. 21

·       Alert handling. 25

·       MAC Interface. 27

Verification Methods. 28

Recommended Design Experience. 28

Ordering Information. 28

Revision History. 28

 

 

 

Design Gateway Co., Ltd

E-mail:    ip-sales@design-gateway.com

URL:       design-gateway.com

Features

·      10Gbps QUIC engine conforming to RFC9000.

·      Supports the Client-side QUIC operation.

·      Supports TLS1.3 cipher suite:

·        TLS_AES_128_GCM_SHA256

·        Key exchange: X25519

·        Derive key: HKDF with SHA256

·        Encryption/decryption: AES128GCM

·      Signature algorithm:

·        rsa_pss_rsae_sha256 with 2048-bit RSA public key

·        ecdsa_secp256r1_sha256

·      Supports multiple streams compliant with the QUIC standard.

·      Supports 0-RTT (Zero Round-Trip Time) session resumption.

·      Includes integrated UDP/IP and ARP protocol controllers.

·      Requires an IP core clock frequency of 200 MHz as a minimum recommended frequency.

·      Supports unaligned AXI4 protocol for user data interface.

·      Utilizes a ring buffer technique for user memory management interface.

·      Supports 32-bit MAC interface using AXI4-Stream protocol.

·      Customized service options:

·        Increase the number of supported streams.

·        Increase user buffer size.

·        Extend certificate size.

 

Table 1 Table Description

Notes:

1)      The actual logic resource depends on the percentage of unrelated logic.

2)      The resource usage is based on a 16-stream configuration, each with a 512 kB buffer.

 

 

Figure 1 The QUIC protocol architecture

 

General Description

QUIC is a cryptographic transport protocol designed to provide a secure and efficient connection between a client and server over the network. Before the development of the QUIC protocol, the TLS protocol was widely used for secure communication, but it depends on the transport protocol, named TCP/IP, for the connection-oriented and reliable data transmission. This dependency limits the performance of the TLS protocol. For this reason, the QUIC protocol was designed and later approved as a standard to provide a secure data transfer protocol and to address the limitations faced by TLS.

The fact that QUIC protocol spans multiple layers in the OSI model offers the flexibility and control over how it manages its own data flow. This allows QUIC protocol to implement its transport specification to tackle network problems in actual systems, as well as to develop its own data flow structure to support the need for multiple stream connections. These advantages of the QUIC protocol are just examples of what it offers to overcome the limitations of TLS.

Although several network applications these days still use the TLS protocol for secure data transfer, it is becoming more common, at the time of writing this document, to find the use of the QUIC protocol in web browsing, DNS, and other applications. For example, the QUIC protocol is on by default in Chrome browser, and many other major companies, such as Apple and Facebook, have adopted QUIC in their applications.

Our QUIC Client 10Gbps IP Core (QUIC10GC-IP) is specifically engineered to manage the TLS1.3 handshake for a client, encrypt outgoing payload data, decrypt incoming payload data and handle QUIC transport tasks, effectively covering both QUIC and UDP/IP layers, as illustrated in Figure 1. Prior to transferring payload data using the QUIC protocol, a handshake process is initiated to establish a secure connection. During this phase, cryptographic keys are exchanged and generated to ensure the data confidentiality, and the QUIC client also validates the server's signature and certificate to ensure authenticity. The QUIC10GC-IP allows data transmission only after a successful handshake has created a secure channel between the two parties.

The QUIC Protocol Version 1 and several technical terms mentioned in this document adheres to the standards defined by RFC9000. For more information, please refer to the RFC9000 document. For details on TLS Protocol Version 1.3, please refer to the RFC8446 document.

 

Application Example

 

Figure 2 QUIC10GC-IP in an edge computing accelerator application

 

In the application above, the QUIC10GC-IP is employed in an edge device that captures real-time video and sends it over the network to a server for analysis. This use case highlights the critical need for secure data transmission, especially when dealing with confidential information. By using the QUIC10GC-IP, data is encrypted before transmission, significantly reducing the risk of unauthorized access. Even in the case of a data breach, it may take a long time* for those who have it to crack the encryption.

The QUIC10GC-IP's ability to integrate into a system with an operating system (OS) is illustrated in Figure 2. The IP can access the main memory via the AXI4 protocol, connecting to an AXI interconnect that facilitates memory access. This integration allows applications on the OS to interact with the IP by simply reading and writing data to memory. The IP then directly accesses this memory using DMA techniques, providing a secure and efficient data transfer mechanism. This setup is particularly useful for applications requiring an OS for complex tasks while needing the security provided by the QUIC protocol to protect data during network transmission.

 

Note:

* If a brute force attack were attempted on AES-128 encryption, it would take an estimated billion years to crack (reference: appsealing.com/aes-128-encryption).

 

Functional Description

Figure 3 illustrates QUIC10GC-IP block diagram and its interface signals. Users can control and transfer data with QUIC10GC-IP via the user interface signals as described in Table 2.

·        MAC Interfaces: The interfaces that connect to the lower layer, namely MAC Tx I/F and MAC Rx I/F, run at a clock frequency of ethernet subsystem. These interfaces are used to transfer network packets with the MAC layer.

·        Core Interfaces: The remaining interfaces run at the IP core clock frequency, called QUICClk, which is recommended to be set greater than 200 MHz for optimized performance.

To set parameters and start the IP, the user uses the control groups – Network parameters group for setting essential network parameters, Connection parameters for setting QUIC parameters and some network parameters, and Connection Control I/F for controlling and monitoring the QUIC connection. To transfer QUIC data, the user manages send and receive data through User Tx/Rx Memory I/F, and IP is then responsible for handling user data transfers through AXI4 Write/Read Channels. Additionally, the user can also monitor QUIC Rx information frames through User Rx Info group and can access handshake information in details through QUIC handshake info group. However, these optional interfaces enable advanced monitoring and debugging capabilities but can be ignored if the user only needs a straightforward data transfer channel through the QUIC10GC-IP.

 

Figure 3 QUIC10GC-IP block diagram

 

Table 2 Core Parameters

Table 3 QUIC10GC-IP Interface signals

Note:

* As StmGroup increases, the total memory requirement grows linearly. Designers should consider memory bandwidth and address management logic in their application to handle concurrent stream access efficiently.

* QUIC handshake information is optional signals that user can access handshake information in details. User can ignore these signals and implement QUIC10GC-IP as a channel to pass through payload.

 

·        Set parameters

Users must configure network parameters for the QUIC10GC-IP on the IP (Source) side by asserting NetworkSet to ‘1’ while QUICConnOnBusy is ‘0’. During this operation, the SrcMacAddr[47:0], SrcIPAddr[31:0], SubnetMask[4:0] and GatewayIPAddr[31:0] parameters must be valid. These parameters will remain unchanged for every connection until the user sets new parameters.

For each connection, users can update the DstIPAddr[31:0], DstPort[15:0], and SrcPort[15:0] values, which must be valid when the user asserts QUICConnOn to ‘1’ while QUICConnOnBusy is ‘0’.

 

Figure 4: Example of setting network parameters

 

For ALPN (Application-Layer Protocol Negotiation), the ClientHello message includes an extension that informs the server about the application layer protocol to be used over the secure connection. Users can change the ALPN setting for every connection. When the user asserts QUICConnOn to ‘1’ while QUICConnOnBusy is ‘0’, both QUICALPNLen [4:0] and QUICALPNStr [127:0] must be valid and will be used as ALPN information. To exclude this ALPN field from the ClientHello message, the user can set QUICALPNLen[4:0] to 0.

Figure 5: Example of setting an ALPN value to the QUIC10GC-IP

 

The QUIC10GC-IP connects to a network system by interfacing with a device’s MAC address, which is necessary for sending and receiving network packets. This is achieved through an ARP (Address Resolution Protocol) handler integrated into the IP. The ARP handler operates either during the network parameter setup process or at the start of a new QUIC connection.

§  Set network parameters

When the NetworkSet signal is set to ‘1’, an internal controller within the IP initializes a scan of the value of the gateway address (GatewayIPAddr). If the GatewayIPAddr holds a non-zero value (i.e., not 0.0.0.0), the ARP protocol handler sends an ARP request packet to the gateway over the connected network. It then waits for an ARP reply from the gateway, as depicted in the timing diagram in Figure 6.

If an ARP reply is not received or is missing, the ARP handler will retransmit the request packet up to ten times. If no ARP reply is received after these attempts, the IP determines that it cannot connect to the gateway, and consequently, a QUIC connection through the gateway will not be possible.

It is important to mention that during this ARP process, the IP will not initiate any QUIC connections. Only after the ARP process is completed, the IP will proceed to operate the requested QUIC connection. This ensures that the necessary network parameters are correctly configured before attempting any data transmission.

 

Figure 6 ARP process for connecting to a Gateway

 

§  Open a connection

When a new connection is requested, as will be described in the next topic, the ARP protocol handler first checks if the DstIPAddr is within the local network defined by the SrcIPAddr and SubnetMask.

If the destination is within the local subnet, it sends an ARP request packet to the target device. It then waits for an ARP reply packet to complete this process, as shown in Figure 7. If no ARP reply is received from the target, the IP returns an alert code to the user.

If the destination is outside the local subnet, it uses the MAC address of the Gateway. If the Gateway MAC address is unavailable, the IP also returns an alert code to the user.

For the next QUIC connection with the same destination address, the IP will not run this ARP process if the MAC address of the target device is already obtained from the previous connection. This reduces the waiting time for a connection.

 

Figure 7 ARP process for connecting to a target device

 

·        Open and close a secure connection

The QUIC10GC-IP is designed to handle the full handshake process with a supported cipher suite, as well as encrypt and decrypt data over the network. Users can open a secure connection by asserting QUICConnOn to ‘1’ while QUICConnOnBusy is ‘0’. As shown in Figure 5, after QUICConnOn is asserted to ‘1’, QUICConnOnBusy is asserted to ‘1’ in the next cycle, and the QUIC10GC-IP begins the handshake operation, indicating by the fact that QUICHandshakeBusy is asserted to ‘1’.

However, before the handshake process is finished (i.e., QUICHandshakeBusy is de-asserted to ‘0’), users are allowed to prepare TxData in the Tx user buffer. Once the handshake process is complete and data is available, the QUIC10GC-IP transitions to the data transfer phase. QUICTxTrnsBusy is asserted to ‘1’ when the Tx user buffer is not empty and is cleared when the TxData has been fully acknowledged by the server. When the server sends data to the QUIC10GC-IP, QUICRxTrnsBusy is asserted to ‘1’. QUICRxTrnsBusy is cleared when the received data is written to the user Rx buffer.

Users can close the connection only when QUICHandshakeBusy, QUICTxTrnsBusy, and QUICRxTrnsBusy are all not asserted to ‘1’. If users attempt to close the connection when any of these signals are asserted, the QUIC10GC-IP will return an ABNORMAL_CLOSE_ERROR.

During the connection, if an alert occurs, the IP asserts the QUICAlertInt signal and outputs the corresponding alert code through the QUICAlertCode signal. After this, the user Rx buffer must be ready to receive the available data from QUIC10GC-IP until QUICRxTrnsBusy is de-asserted to be ‘0’. Then, set the QUICConnOn to ‘0’ before attempting to establish a new connection. More details about the alert codes can be found in the Alert handling section.

 

Figure 8: Example of opening and closing a connection

 

·        Handshake process

 

Figure 9: Handshake process

 

Figure 9 shows the main flow of the QUIC full handshake process. After establishing a UDP connection, the QUIC10GC-IP, operating as a client, generates a ClientHello message. This message includes the supported cipher suite (TLS_AES_128_GCM_SHA256), the client’s ephemeral X25519 public key, a 256-bit random number unique to the connection and the Server Name Indication (SNI) extension.

To obtain the SNI, QUIC10GC-IP asserts QUICSNIRdEn to ‘1’ and sets QUICSNIRdAddr[6:0] as the read address to access the SNI data via QUICSNIRdData[15:0]. QUICSNIRdData[15:0] must be valid after one clock cycle after QUICSNIRdAddr[6:0] is set.

 

Figure 10 Example of timing diagram for reading SNI

 

The QUIC10GC-IP provides the random number in ClientHello message via Random[255:0], which is valid when QUICKeyValid is asserted to ‘1’, as shown in Figure 12. Additionally, the QUIC10GC-IP generates a random connection ID used for identifying the connection. The QUIC10GC-IP uses random connection ID to generate the key materials for encryption and decryption of data. For the QUIC10GC-IP, the supported key derivation function is the Hash-based Key Derivation Function (HKDF) with SHA256.

The server responds by sending a ServerHello message, including the server’s ephemeral X25519 public key. When the QUIC10GC-IP receives the ServerHello message, it uses the server’s public key to compute the shared key using X25519. This shared key is then passed to a key derivation function to generate the key materials for encryption and decryption.

 

The QUIC10GC-IP uses HKDF-SHA256 to generate two key materials: the Client Traffic Secret (CTS) and the Server Traffic Secret (STS). CTS is used to derive the client traffic key and Initialization Vector (IV) to encrypt handshake messages sent by the client, while STS is used to derive the server traffic key and IV to decrypt handshake messages sent by the server. Users can access CTS and STS when QUICKeyValid is asserted to ‘1’ and QUICKeyType[1:0] is “01”, indicating that the keys are valid for Handshake traffic.

The QUIC10GC-IP supports signature verification using rsa_pss_rsae_sha256 and ecdsa_secp256r1_sha256 algorithms. It provides certificate information to the user, with a maximum certificate size of 8 kB. The certificate data is valid when QUICCertValid is asserted. The QUICCertData[15:0] holds the certificate information, and QUICCertByteEn[1:0] indicates which byte within QUICCertData[15:0] is valid.

As shown in Figure 11, a 963-byte certificate is delivered. In this example, the last QUICCertData (C482) is valid for only 1 byte, with QUICCertByteEn[1:0] set to “01”. The signals QUICCertData[15:0], QUICCertValid, and QUICCertByteEn[1:0] can be used to write the certificate data to a buffer (such as FIFO or RAM). The QUICCertLast signal indicates the last cycle of QUICCertData. When QUICCertLast is asserted to ‘1’, it signals that the server certificate information for Certificate Validity Verification is complete and ready for the user.

 

Figure 11: Example of a timing diagram for 963-byte certification information

 

After sending the client’s finished message, the QUIC10GC-IP regenerates key materials, specifically the CTS and STS, to derive the key and IV for application data. During this key derivation process, QUICKeyValid is de-asserted to ‘0’. Once the key derivation is completed, QUICKeyValid is asserted to ‘1’ and QUICKeyType[1:0] is set to “10” to indicate that the random number, CTS, and STS are valid for Application Data traffic, as depicted in Figure 12.

 

Figure 12: Example of controlling signals in handshake process timing diagram

 

If the current connection with a server successfully negotiates support for 0-RTT connection resumption, the QUIC10GC-IP extracts the necessary session parameters and provides them to the user via a memory-mapped interface. The user must allocate a memory buffer for storing these parameters. The memory map for this parameter storage is described in Table 4.

Table 4 0-RTT Parameters Memory Map

To write the important 0-RTT parameters to the user-allocated buffer, the QUIC10GC-IP asserts QUICZeroRTTParamsWrEn to ‘1’, sets the QUICZeroRTTParamsWrAddr[8:0] to the write address, and presents the data on QUICZeroRTTParamsWrData[15:0]. Once all parameters have been stored and validated for use in a future 0-RTT connection, the QUIC10GC-IP asserts QUICZeroRTTParamsReady to ‘1’, as depicted in Figure 13.

Important User Action After Storing Parameters

After QUICZeroRTTParamsReady is asserted, the user must copy all parameters from the QUIC10GC-IP buffer to a separate, user-managed buffer for permanent safekeeping. This is critical because the QUIC10GC-IP will overwrite the parameters in its internal buffer when a subsequent connection is opened with any server. The user's saved copy is required to initiate a 0-RTT connection with this specific server in the future.

 

Figure 13: Example of a timing diagram for writing 0-RTT parameter information

 

·        0-RTT handshake process

 

Figure 14: 0-RTT handshake process

 

Figure 14 show the flow of the QUIC 0-RTT handshake process. To open a secure connection using 0-RTT, the user must initialize the QUIC10GC-IP with the 0-RTT parameters that were provided by the server and stored in the user-allocated buffer during a previous connection.

The user writes the correct parameters to the memory map shown in Table 4. A critical step in this process involves calculating the TICKET_AGE_ADD value. The user must:

1.      Calculate the ticket age: the time elapsed (in milliseconds) from when the 0-RTT parameters were received in the previous connection to the time of the current connection attempt.

2.      Add this calculated age to the TICKET_AGE_ADD value that was stored in the buffer from the previous connection.

3.      Take the result modulo 2³² to retain only the least significant 32 bits.

To obtain the 0-RTT parameters from the user’s buffer, the QUIC10GC-IP asserts QUICZeroRTTParamsRdEn to ‘1’ and sets QUICZeroRTTParamsRdAddr[8:0] as the read address to access the 0-RTT parameter via QUICZeroRTTParamsRdData[15:0]. QUICZeroRTTParamsRdData[15:0] must be valid after on clock cycle after QUICZeroRTTParamsRdAddr[8:0] is set.

 

Figure 15: Example of a timing diagram for reading 0-RTT parameter information

 

After the user has initialized the 0-RTT parameters in the buffer, a secure connection can be opened by asserting both QUICConnOn and QUICTryZeroRTT to ‘1’ while QUICConnOnBusy is ‘0’. As shown in Figure 16, once QUICConnOn is asserted, QUICConnOnBusy becomes ‘1’ on the next cycle, and the QUIC10GC-IP begins the handshake operation, indicated by QUICHandshakeBusy being asserted to ‘1’.

The user is permitted to prepare application data (TxData) in the Tx buffer for transmission even before the handshake is finished (i.e., QUICHandshakeBusy is de-asserted to ‘0’). When the QUIC10GC-IP generates key material for early data, it will assert QUICKeyValid to ‘1’ with QUICKeyType[1:0] set to “00”, indicating that the Client Traffic Secret (CTS) for Early Application traffic is valid. Data written to the buffer while this key is active will be sent to the server in 0-RTT packets. After the handshake completes, all subsequent application data is sent using 1-RTT packets. All other operations follow the standard handshake procedure shown in Figure 8.

As shown in Figure 14, the 0-RTT handshake skips the server certificate authentication phase. Consequently, certificate information is not available during a 0-RTT connection. If the user receives certificate information while attempting a 0-RTT handshake, it indicates that the server has chosen not to resume the session and is instead requesting a full handshake, as communicated in its ServerHello message. In this case, the QUIC10GC-IP will automatically continue with a full handshake.

Following the receipt of a ServerHello or the sending of the client’s Finished message, the QUIC10GC-IP regenerates key material. During this key derivation process, QUICKeyValid is de-asserted to '0'. Once derivation is complete, QUICKeyValid is asserted to ‘1’ to indicate that the new Random value, CTS, and STS are valid, as depicted in Figure 16. The QUICKeyType[1:0] signal will indicate the type of traffic the new keys are for: a value of “01” signifies Handshake Data traffic, while “10” signifies Application Data traffic.

 

Figure 16: Example of controlling signals in 0-RTT handshake process timing diagram

 

·        User Tx interface

The QUIC10GC-IP supports multiple stream connections, with the total number of streams determined by the “StmGroup” parameter. Before using the QUIC10GC-IP, users are required to allocate (4*StmGroup)* (2**StmAddrWidth) bytes of memory, starting from AppTxBaseAddr[63:0]. This memory serves as the transmit buffer and is internally divided into blocks of (2**StmAddrWidth) bytes—one block per Stream ID. Each stream has a dedicated memory block, and the IP does not share or dynamically allocate memory across streams. Users must ensure sufficient space is allocated per stream, especially under higher “StmGroup” configurations.

In compliance with the QUIC protocol, stream types are determined by the two least significant bits of the Stream ID (StreamID[1:0]):

·        StreamID[1:0] == 00 — Client-initiated, bidirectional

·        StreamID[1:0] == 01 — Server-initiated, bidirectional

·        StreamID[1:0] == 10 — Client-initiated, unidirectional (Client-send only)

·        StreamID[1:0] == 11 — Server-initiated, unidirectional (Server-receive only)

Client-initiated streams (StreamID[1:0] == 00 and 10) can be used to transmit data immediately after the handshake is complete. For Server-initiated streams (StreamID[1:0] == 01 and 11), the user must wait until the server opens the stream before transmitting data. Moreover, streams with StreamID[1:0] == 11 are unidirectional and reserved for receive-only data; the user must not use these streams for transmission.

Example of Transmission Buffer Allocation

As shown in Figure 17, this is an example configuration with StmGroup=1 and StmAddrWidth=18. In this case, the user is required to allocate 1024 KB of transmission memory. This memory is divided into four blocks of 256 KB each, corresponding to StreamID0, StreamID1, StreamID2, and StreamID3, respectively.

The stream types are as follows:

·        StreamID0 — Client-initiated, bidirectional

·        StreamID1 — Server-initiated, bidirectional

·        StreamID2 — Client-initiated, unidirectional (Client-send only)

·        StreamID3 — Server-initiated, unidirectional (Server-receive only)

 

Figure 17: Transmit memory structure

 

Each block of memory in the transmit buffer functions as a circular buffer. This means that the buffer uses a write pointer (WrPtr) and a read pointer (RdPtr) to manage the flow of data. The WrPtr indicates the byte address to which data will be written, while the RdPtr indicates the byte address from which data will be read. The difference between these pointers shows the position of available data.

 

In Figure 18, three examples illustrate how to use the circular buffer in context. Figure 18a shows an empty buffer, with both pointers at the same address, at address 1. Figure 18b depicts data written from address 1 to 5, with WrPtr at address 6, indicating 5 bytes of available data from address 1 to 5, while RdPtr remains unchanged. Figure 18c demonstrates a full buffer scenario, where WrPtr is at address 3 and RdPtr has moved to address 4, preventing WrPtr from increasing further to avoid overwriting unread data. This also illustrates address 1 and 2 being reused, showing the use of the circular buffer concept.

 

Figure 18: Example of the circular buffer concept

 

The transmit buffer is managed using AppTxWrAddr[((X+1)*StmAddrWidth)-1 : X*StmAddrWidth] as the write pointer (WrPtr) and AppTxRdAddr[((X+1)*StmAddrWidth)-1 : X*StmAddrWidth] as the read pointer (RdPtr), where ‘X’ refers to the Stream ID index ranging from 0 to (4*StmGroup – 1). When a new stream connection is opened, the IP initializes the read pointer (AppTxRdAddr) to match the write pointer (AppTxWrAddr), indicating an empty transmit buffer. The user then prepares transmission data by writing it into the memory region starting from AppTxBaseAddr[63:0] and updating AppTxWrAddr for the corresponding stream. This signals to the QUIC10GC-IP that data is available for transmission on StreamID ‘X’.

The IP reads this data from memory using the AXI4 protocol, fragments it into QUIC packets, applies encryption, and transmits the data over the network. After successfully reading a byte, the IP increments the read pointer (AppTxRdAddr) accordingly, allowing that memory region to be reused for future transmissions.

Stream opened is indicated by the AppStmOpened[X] status signal. For a client-initiated stream, AppStmOpened[X] is asserted to ‘1’ only after the IP has completed its initial read of the stream parameters. If the server’s transport parameters block this Stream ID, the IP will not read its data. For a server-initiated stream, the IP will only read data if AppStmOpened[X] is asserted to ‘1’; if it remains ‘0’, the stream is considered not open and its data is ignored.

To close a stream (StreamID ‘X’), the user must set AppTxWrFin[X] to ‘1’ and ensure that AppTxWrAddr points to the last valid byte address. The IP will continue transmitting data up to that address before marking the stream as closed. After this point, the user must not write additional data to that stream.

 

Figure 19: Example of reading data from the transmit buffer

 

To transfer data from memory, an AXI4 read controller is utilized in the User Tx data interface of our IP. The following constraints are applied:

·        The burst attribute is set to INCR (ARBURST=0b01), indicating that the address for each transfer is incremented.

·        Transfers can be unaligned, utilizing an unaligned start address and byte lane strobes.

·        Single AXI4 transactions are applied.

·        ARSIZE is set to 0b100, indicating 16 bytes per transfer.

·        ARLEN is not fixed to 2, 4, 8, or 16.

·        Maximum transaction bytes are capped at 4096 bytes per transaction.

·        The address for each transfer is guaranteed to always be within a memory boundary.

·        RRESP is not presented and assumed to be 0b000 (OKAY).

 

Figure 20 AXI4 read operation for the User Tx data interface

 

The example presents the sequence of the AXI4 read operation used by the IP to obtain the transmit data from the memory. The IP performs this operation in a single access only. It starts by sending the address transaction, asserting the QUICTxArValid to ‘1’ along with the valid values for QUICTxArAddr and QUICTxArLen. The first variable is the start address of the accessed memory, and the second is the transfer length in word units. For instance, Figure 20 shows the transfer of D0 – D20, hence, the transfer length is 0x14.

Once the address transaction is complete, the IP waits to receive the data transaction, which can be a burst or a single beat depending on the QUICTxArLen value. The read operation finishes when both QUICTxrValid and QUICTxrLast are asserted to ‘1’.

The IP supports the discontinuous transfers. When QUICTxArReady equals ‘0’, the IP holds the current valid values of the address transaction. Similarly, the data transaction can be paused by de-asserting QUICTxrValid to ‘0’. Additionally, QUICTxrReady is always asserted to ‘1’, indicating that the IP is ready to receive the data it requested.

 

·        User Rx interface

Similar to the User Tx interface, the QUIC10GC-IP supports multiple stream connections, with the total number of streams determined by the “StmGroup” parameter. Users must allocate (4*StmGroup)*(2**StmAddrWidth) bytes of memory starting from AppRxBaseAddr[63:0]. This memory serves as the receive buffer and is internally divided into blocks of (2**StmAddrWidth) bytes—one block per Stream ID. Each stream has a dedicated memory block, and the IP does not share or dynamically allocate memory across streams.

As specified by the QUIC protocol, the server can send data to server-initiated streams (StreamID[1:0] == 01 and 11) without restriction. However, for client-initiated streams (StreamID[1:0] == 00 and 10), the client must first transmit data before the server is allowed to respond on those streams. Additionally, StreamID[1:0] == 10 is a unidirectional stream, reserved for a send-only stream and is not used as a receive buffer.

Example of Receive Buffer Allocation

As shown in Figure 21, this is an example configuration with StmGroup=1 and StmAddrWidth=18. In this case, the user is required to allocate 1024 KB of receive memory. This memory is divided into four blocks of 256 KB each, corresponding to StreamID0, StreamID1, StreamID2, and StreamID3, respectively.

 

Figure 21: Receive memory structure

 

The circular buffer concept is also applied to the User Rx interface. In this direction, however, the IP will write data to the receive buffer, and according to the protocol, it is possible that the data might not be in order. As depicted in Figure 22a, 5 bytes are available and confirmed by WrPtr and RdPtr from address 1 – 5. Other spaces in the memory can be filled with valid data but cannot yet be confirmed by WrPtr because it is not continuous. This case can also be seen in our QUIC10GC-IP environment and therefore, the users should threat the receive buffer as a read-only buffer.

As soon as the missing data is retransmitted to the IP, the new position of WrPtr will be recalculated and presented to the users. In Figure 22b, for example, if data at address 6, 7, and 10 are received, the IP will fill the data and then update WrPtr to the point where it is highest and continuous, which is address 11.

 

Figure 22: Example of the circular buffer concept in the receive buffer

 

The receive buffer is managed using AppRxWrAddr[((X+1)*StmAddrWidth)-1 : X*StmAddrWidth] as the write pointer (WrPtr) and AppRxRdAddr[((X+1)*StmAddrWidth)-1 : X*StmAddrWidth] as the read pointer (RdPtr), where ‘X’ refers to the Stream ID index ranging from 0 to (4*StmGroup – 1). When a new stream connection is opened, the IP initializes the write pointer (AppRxWrAddr) to match the read pointer (AppRxRdAddr), indicating that the receive buffer is initially empty. During data transfer, the QUIC10GC-IP receives data from the corresponding stream and writes it to the appropriate memory region, starting from AppRxBaseAddr[63:0], using the AXI4 protocol. Once the data is successfully written, the IP updates AppRxWrAddr to the next byte address, indicating the presence of new data in the buffer.

The AppStmOpened[X] signal indicates stream opened. For a server-initiated stream, AppStmOpened[X] is asserted to ‘1’ upon the IP receiving and writing the first data segment for that stream to memory.

After the user has processed the received data, they must update AppRxRdAddr to point to the next read position. This allows the IP to reuse the released memory space for future data reception.

If the remote endpoint initiates stream closure for StreamID ‘X’, the QUIC10GC-IP sets AppRxWrFin[X] to ‘1’ and provides the final valid write address in AppRxWrAddr. No further data will be written to that stream after this point.

 

Figure 23: Example of QUIC10GC-IP write data to receive memory

 

To transfer data to memory, similar to the User Tx data interface, an AXI4 write controller is included in the User Rx data interface. The following constraints are applied:

·        The burst attribute is set to INCR (AWBURST=0b01), indicating that the address for each transfer is incremented.

·        Transfers can be unaligned, utilizing an unaligned start address and byte lane strobes.

·        Single AXI4 transactions are applied.

·        AWSIZE is set to 0b100, indicating 16 bytes per transfer.

·        AWLEN is not fixed to 2, 4, 8, or 16.

·        Maximum transaction bytes are capped at 4096 bytes per transaction.

·        The address for each transfer is guaranteed to always be within a memory boundary.

·        BRESP is not presented and assumed to be 0b000 (OKAY), and BCOMP is not presented.

 

Figure 24 AXI4 write operation for the User Rx data interface

 

The above illustration shows the AXI4 write operation used by the IP to write data to the memory. Only a single access of the write operation is performed at a time. It starts by sending the address transaction, asserting QUICRxAwValid to ‘1’ along with two associated values, QUICRxAwAddr and QUICRxAwLen. The first value is the start address of the write position in the memory, and the other is the transfer length. This timing diagram, for example, presents the transfer of D0 – D15, where QUICRxAwLen must be 0xF.

The completion of the address transaction is indicated by the assertion of both QUICRxAwReady and QUICRxAwValid. After one clock cycle, the data transaction begins by asserting QUICRxwValid to ‘1’ with the valid values of QUICRxwData, QUICRxwStrb and QUICRxwLast. When QUICRxwLast is valid and asserted to ‘1’, the data transaction is completed. At the end, the IP waits for the write response from QUICRxbValid.

For unaligned data transfer, QUICRxAwAddr[3:0] can be set to any value other than 0x0, and the first and the last write strobes (QUICRxwStrb) can be set to other values than 0xFFFF for writing the data into a particular byte address. In this example, QUICRxAwAddr[3:0] must be set to 0x8 so that the first QUICRxwStrb is 0xFF00.

Discontinuous transfers of the address and data transaction are supported. QUICRxAwReady can be ‘0’, and the address transaction holds valid values, while the data transaction is paused when QUICRxwReady is set to ‘0’. Furthermore, QUICRxbReady is always asserted to ‘1’ to receive the write response.

 

Table 5 User Rx information

While the QUIC connection is established and enters the data transfer phase, specific QUIC frame types can be passed to the user for system monitoring purposes. These frame types are detailed in Table 5 and are communicated to the user through the User Rx Information interface.

For example, if a DATA_BLOCKED (0x14) frame is encountered, it will be sent to the user via the QUICRxInfoType signal, with the associated parameter Maximum Data presented through the QUICRxInfoD0 signal. This information indicates that the remote QUIC endpoint is attempting to send data but is being blocked by flow control constraints.

Receiving such frames allows users to identify issues in detail and subsequently manage their system more effectively. In the given scenario, users could release the used Rx buffer space back to the IP, enabling the remote QUIC endpoint to continue sending data. This monitoring and management can help maintain optimal data flow and system performance during QUIC data transfers.

 

Figure 25: Example of User Rx information

 

·        Alert handling

In the QUIC protocol, a sender can send alert messages to indicate closure information and errors to the receiver. The QUIC10GC-IP is designed to support such alert messages, as shown in Table 6. It uses the QUICAlertCode[15] to represent the direction of the error code, asserting to ‘1’ when an error is received from the server and asserting to ‘0’ when an error arises from the QUIC10GC-IP. The QUICAlertCode[14:0], represents the specific error code.

Table 6 Alert code description

* QUIC10GC-IP can present an alert code from a server only in format of 15-bit value.

 

·        MAC Interface

The MAC interface of the QUIC10GC-IP uses simple streaming data interface similar to the AXI4-Stream interface. It is used to transmit and receive packets, which are reduced Ethernet frames. According to IEEE 802.3, this reduced frame includes only the destination address, source address, length and data.

When the QUIC10GC-IP requests to send a packet, it sets MacTxValid to ‘1’ along with the valid values of MacTxData, MacTxSOP, MacTxEOP and MacTxByteEn. The transmission can be paused if MacTxReady is de-asserted to ‘0’ at any clock cycle and resumed afterward. MacTxByteEn[3:0] indicates which bytes within MacTxData[31:0] are valid. For example, MacTxByteEn[0] indicates the validity of MacTxData[7:0], and MacTxByteEn[1] for the validity of MacTxData[15:8]. MacTxSOP is set to indicate the start of a packet, while MacTxEOP is asserted to indicate the end of a packet. Figure 26 depicts an example of sending a packet.

 

Figure 26: Transmit MAC Interface timing diagram

 

On the other hand, Figure 27 shows an example of receiving a packet. To start receiving a packet, MacRxValid is asserted to indicate valid data on MacRxData[31:0]. MacRxByteEn[3:0] is used to indicate which bytes within MacRxData[31:0] are valid, and MacRxEOP is asserted to indicate the end of a packet. If an error occurs during reception, MacRxError will be asserted to ‘1’ at the end of the packet, and the receiving packet will be discarded. In this example, the reception of data (D0 to D72) happens when MacRxValid is asserted.

 

Figure 27: Receive MAC Interface timing diagram

 

Verification Methods

The QUIC10GC-IP Core functionality was verified by simulation and also proved on real board design by using ZCU106 and KR260 Evaluation Board.

Recommended Design Experience

The user must be familiar with HDL design methodology to integrate this IP into a system.

Ordering Information

This product is available directly from Design Gateway Co., Ltd. Please contact Design Gateway Co., Ltd. For pricing and additional information about this product, use the contact information on the front page of this datasheet.

Revision History