From 6be7dd11315c4112403e0fb7298f5e1516309739 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 10 Jun 2022 14:26:03 +0200
Subject: [PATCH 01/25] docs: add TAR format

---
 IPIP/0000-gateway-tar-response-format.md | 63 ++++++++++++++++++++++++
 http-gateways/PATH_GATEWAY.md            | 16 ++++--
 2 files changed, 75 insertions(+), 4 deletions(-)
 create mode 100644 IPIP/0000-gateway-tar-response-format.md

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
new file mode 100644
index 000000000..2393a1b27
--- /dev/null
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -0,0 +1,63 @@
+# IPIP 0000: Gateway TAR Response Format
+
+- Start Date: (format: 2022-10-10)
+- Related Issues:
+  - https://github.com/ipfs/specs/pull/288
+  - https://github.com/ipfs/go-ipfs/pull/9029
+  - https://github.com/ipfs/go-ipfs/pull/9034
+
+# Summary
+
+Add TAR as a response format for the HTTP Gateway.
+
+# Motivation
+
+Currently, the HTTP Gateway only allows the download of single files, or
+CAR archives. However, CAR files are sometimes not necessary and user may
+want to download entire directories. An example use case is for the IPFS
+Web UI, where users are able to download files or directories.
+
+# Detailed design
+
+The solution is to allow the Gateway to support producing TAR archives
+by requesting them using either the `Accept` HTTP header or the `format`
+URL query.
+
+## Test fixtures
+
+Existing `curl` and `tar` tools can be used by implementers for testing.
+
+Providing static test vectors has little value here, as different TAR libraries may produce
+different byte-to-byte files  due to unspecified ordering of files and directories inside.
+
+## Design rationale
+
+The current gateway already supports different response formats via the
+`Accept` HTTP header and the `format` URL query. This RFC proposes adding
+one more supported format to that list.
+
+### User benefit
+
+Users will be able to directly download UnixFs directories from the gateway. In the Web UI,
+for example, we will be able to create a direct link to download the file, instead of using the
+API to put the whole file in memory before downloading it, saving resources and avoiding bugs.
+
+CLI users will be able to download a directory with existing tools like `curl` and `tar`.
+
+### Compatibility
+
+This RFC is backwards compatible .
+
+### Security
+
+See below.
+
+### Alternatives
+
+An alternative was considered to also support [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
+However, there is a concern that that may be a vector for DOS attacks since compression requires
+high CPU power.
+
+### Copyright
+
+Copyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).
\ No newline at end of file
diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 35ad96dd4..ba9298f05 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -181,6 +181,7 @@ For example:
 
 - [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable raw [block](https://docs.ipfs.io/concepts/glossary/#block) to be returned
 - [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable [CAR](https://docs.ipfs.io/concepts/glossary/#car) stream to be returned
+- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) archive to be returned
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - application/vnd.ipld.dag-json OR application/json – requests IPLD Data Model representation serialized into [DAG-JSON format](https://ipld.io/docs/codecs/known/dag-json/)
 - application/vnd.ipld.dag-cbor OR application/cbor - requests IPLD Data Model representation serialized into [DAG-CBOR format](https://ipld.io/docs/codecs/known/dag-cbor/)
@@ -248,7 +249,9 @@ Optional, `format=<format>` can be used to request specific response format.
 
 This is a URL-friendly alternative to sending
 `Accept: application/vnd.ipld.<format>` header, see [`Accept`](#accept-request-header)
-for more details.
+for more details. 
+
+In case of `Accept: application/x-tar`, the `?format=` equivalent is `tar`.
 
 <!-- TODO Planned: https://github.com/ipfs/go-ipfs/issues/8769
 - `selector=<cid>`  can be used for passing a CID with [IPLD selector](https://ipld.io/specs/selectors)
@@ -354,7 +357,7 @@ and CDNs, implementations should base it on both CID and response type:
 
 - By default, etag should be based on requested CID. Example: `Etag: "bafy…foo"`
 
-- If a custom `format` was requested (such as a raw block or a CAR), the
+- If a custom `format` was requested (such as a raw block, CAR or TAR), the
   returned etag should be modified to include it. It could be a suffix.
   - Example: `Etag: "bafy…foo.raw"`
 
@@ -365,8 +368,9 @@ and CDNs, implementations should base it on both CID and response type:
   - Example: `Etag: "DirIndex-2B423AF_CID-bafy…foo"`
 
 - When a gateway can’t guarantee byte-for-byte identical responses, a “weak”
-  etag should be used. For example, if CAR is streamed, and blocks arrive in
-  non-deterministic order, the response should have `Etag: W/"bafy…foo.car"`
+  etag should be used. For example, if CAR or TAR is streamed, and blocks arrive in
+  non-deterministic order, the response should have `Etag: W/"bafy…foo.bar"`, where `bar`
+  is `car` or `tar`, respectively.
 
 - When responding to [`Range`](#range-request-header) request, a strong `Etag`
   should be based on requested range in addition to CID and response format:
@@ -395,6 +399,10 @@ Returned directive depends on requested content path and format:
   - If TTL value is unknown, implementations are free to set it to a static
     value, but it should not be lower than 60 seconds.
 
+- `Cache-Control: no-cache, no-transform`  should be returned with
+  `application/x-tar` responses if the TAR response, is not guaranteed
+  to be deterministic.
+
 ### `Last-Modified` (response header)
 
 Optional, used as additional hint for HTTP caching.

From e7a3572a93a5a163d4ab78cef52eb0b8716dc4ff Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 15 Jul 2022 11:37:19 +0200
Subject: [PATCH 02/25] refactor: cleanup markdown

---
 IPIP/0000-gateway-tar-response-format.md | 6 +++---
 http-gateways/PATH_GATEWAY.md            | 6 +++---
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 2393a1b27..ede7854d0 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -6,18 +6,18 @@
   - https://github.com/ipfs/go-ipfs/pull/9029
   - https://github.com/ipfs/go-ipfs/pull/9034
 
-# Summary
+## Summary
 
 Add TAR as a response format for the HTTP Gateway.
 
-# Motivation
+## Motivation
 
 Currently, the HTTP Gateway only allows the download of single files, or
 CAR archives. However, CAR files are sometimes not necessary and user may
 want to download entire directories. An example use case is for the IPFS
 Web UI, where users are able to download files or directories.
 
-# Detailed design
+## Detailed design
 
 The solution is to allow the Gateway to support producing TAR archives
 by requesting them using either the `Accept` HTTP header or the `format`
diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index ba9298f05..796d3a0d8 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -249,7 +249,7 @@ Optional, `format=<format>` can be used to request specific response format.
 
 This is a URL-friendly alternative to sending
 `Accept: application/vnd.ipld.<format>` header, see [`Accept`](#accept-request-header)
-for more details. 
+for more details.
 
 In case of `Accept: application/x-tar`, the `?format=` equivalent is `tar`.
 
@@ -465,7 +465,7 @@ The remainder is an optional `filename` parameter that will be prefilled in the
 
 NOTE: when the `filename` includes non-ASCII characters, the header must
 include both ASCII and UTF-8 representations for compatibility with legacy user
-agents and existing web browsers. 
+agents and existing web browsers.
 
 To illustrate, `?filename=testтест.pdf` should produce:
 `Content-Disposition inline; filename="test____.jpg"; filename*=UTF-8''test%D1%82%D0%B5%D1%81%D1%82.jpg`
@@ -622,7 +622,7 @@ IPLD data, starting from that data which the CID identified.
 **Note:** Other types of gateway may allow for passing CID by other means, such
 as `Host` header, changing the rules behind path splitting.
 (See [SUBDOMAIN_GATEWAY.md](./SUBDOMAIN_GATEWAY.md)
-and [DNSLINK_GATEWAY.md](./DNSLINK_GATEWAY.md)). 
+and [DNSLINK_GATEWAY.md](./DNSLINK_GATEWAY.md)).
 
 ### Traversing remaining path
 

From 3bdec5fd386ab51b33797be2bd9b5092f56b922e Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 15 Jul 2022 11:48:25 +0200
Subject: [PATCH 03/25] refactor: cleanup markdown

---
 IPIP/0000-gateway-tar-response-format.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index ede7854d0..277f8b472 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -2,9 +2,9 @@
 
 - Start Date: (format: 2022-10-10)
 - Related Issues:
-  - https://github.com/ipfs/specs/pull/288
-  - https://github.com/ipfs/go-ipfs/pull/9029
-  - https://github.com/ipfs/go-ipfs/pull/9034
+  - [ipfs/specs/pull/288](https://github.com/ipfs/specs/pull/288)
+  - [ipfs/go-ipfs/pull/9029](https://github.com/ipfs/go-ipfs/pull/9029)
+  - [ipfs/go-ipfs/pull/9034](https://github.com/ipfs/go-ipfs/pull/9034)
 
 ## Summary
 

From 992a0f300f3c0fa898b7168b1f736e1cdbbc00c4 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 22 Jul 2022 13:19:05 +0200
Subject: [PATCH 04/25] fix: grammar errors

---
 IPIP/0000-gateway-tar-response-format.md | 4 ++--
 http-gateways/PATH_GATEWAY.md            | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 277f8b472..6a01a2d18 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -28,7 +28,7 @@ URL query.
 Existing `curl` and `tar` tools can be used by implementers for testing.
 
 Providing static test vectors has little value here, as different TAR libraries may produce
-different byte-to-byte files  due to unspecified ordering of files and directories inside.
+different byte-to-byte files due to unspecified ordering of files and directories inside.
 
 ## Design rationale
 
@@ -46,7 +46,7 @@ CLI users will be able to download a directory with existing tools like `curl` a
 
 ### Compatibility
 
-This RFC is backwards compatible .
+This RFC is backwards compatible.
 
 ### Security
 
diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 796d3a0d8..30ae4e15c 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -400,7 +400,7 @@ Returned directive depends on requested content path and format:
     value, but it should not be lower than 60 seconds.
 
 - `Cache-Control: no-cache, no-transform`  should be returned with
-  `application/x-tar` responses if the TAR response, is not guaranteed
+  `application/x-tar` responses if the TAR response is not guaranteed
   to be deterministic.
 
 ### `Last-Modified` (response header)

From 60f689191ee8509fd4cd25de81466a86d6db5881 Mon Sep 17 00:00:00 2001
From: Marcin Rataj <lidel@lidel.org>
Date: Thu, 29 Sep 2022 19:26:14 +0200
Subject: [PATCH 05/25] ipip(tar): apply suggestions from review

---
 IPIP/0000-gateway-tar-response-format.md |  2 +-
 http-gateways/PATH_GATEWAY.md            | 15 ++++++---------
 2 files changed, 7 insertions(+), 10 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 6a01a2d18..320278a20 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -8,7 +8,7 @@
 
 ## Summary
 
-Add TAR as a response format for the HTTP Gateway.
+Add TAR as a response format for the [HTTP Gateway](../http-gateways/).
 
 ## Motivation
 
diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 30ae4e15c..98d902544 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -181,7 +181,7 @@ For example:
 
 - [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable raw [block](https://docs.ipfs.io/concepts/glossary/#block) to be returned
 - [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable [CAR](https://docs.ipfs.io/concepts/glossary/#car) stream to be returned
-- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) archive to be returned
+- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – returns UnixFS file or a directory as a  [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) stream.  Produces 400 Bad Request  for content that is not UnixFS.
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - application/vnd.ipld.dag-json OR application/json – requests IPLD Data Model representation serialized into [DAG-JSON format](https://ipld.io/docs/codecs/known/dag-json/)
 - application/vnd.ipld.dag-cbor OR application/cbor - requests IPLD Data Model representation serialized into [DAG-CBOR format](https://ipld.io/docs/codecs/known/dag-cbor/)
@@ -357,7 +357,7 @@ and CDNs, implementations should base it on both CID and response type:
 
 - By default, etag should be based on requested CID. Example: `Etag: "bafy…foo"`
 
-- If a custom `format` was requested (such as a raw block, CAR or TAR), the
+- If a custom `format` was requested (such as a raw block, CAR), the
   returned etag should be modified to include it. It could be a suffix.
   - Example: `Etag: "bafy…foo.raw"`
 
@@ -368,9 +368,10 @@ and CDNs, implementations should base it on both CID and response type:
   - Example: `Etag: "DirIndex-2B423AF_CID-bafy…foo"`
 
 - When a gateway can’t guarantee byte-for-byte identical responses, a “weak”
-  etag should be used. For example, if CAR or TAR is streamed, and blocks arrive in
-  non-deterministic order, the response should have `Etag: W/"bafy…foo.bar"`, where `bar`
-  is `car` or `tar`, respectively.
+  etag should be used. For example, if CAR is streamed, and blocks arrive in
+  non-deterministic order, the response should have `Etag: W/"bafy…foo.car"`.
+  If TAR is generated by traversing an UnixFS directory in non-deterministic
+  order, the response should have `Etag: W/"bafy…foo.tar"`.
 
 - When responding to [`Range`](#range-request-header) request, a strong `Etag`
   should be based on requested range in addition to CID and response format:
@@ -399,10 +400,6 @@ Returned directive depends on requested content path and format:
   - If TTL value is unknown, implementations are free to set it to a static
     value, but it should not be lower than 60 seconds.
 
-- `Cache-Control: no-cache, no-transform`  should be returned with
-  `application/x-tar` responses if the TAR response is not guaranteed
-  to be deterministic.
-
 ### `Last-Modified` (response header)
 
 Optional, used as additional hint for HTTP caching.

From 623b90573e7d554ddfccebf90a80293b476f7ec1 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Mon, 3 Oct 2022 13:08:26 +0200
Subject: [PATCH 06/25] ipip(tar): add security notice

---
 IPIP/0000-gateway-tar-response-format.md | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 320278a20..5120ca89f 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -50,7 +50,11 @@ This RFC is backwards compatible.
 
 ### Security
 
-See below.
+Manually created UnixFS DAGs can be turned into malicious TAR files. For example,
+if a UnixFS directory contains a file that points at a relative path outside of
+its root, the unpacking of the TAR file may overwrite local files. In order to prevent
+this, all relative paths in the produced TAR **MUST** be sanitized/truncated to never
+go beyond the root of the exported directory.
 
 ### Alternatives
 

From 20ad7dc5962c87acff11a5f3926de0153745be72 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Thu, 6 Oct 2022 13:37:18 +0200
Subject: [PATCH 07/25] ipip(tar): update security concerns to include .car

---
 IPIP/0000-gateway-tar-response-format.md         |  15 +++++++++++++--
 .../inside-root.car                              | Bin 0 -> 383 bytes
 .../outside-root.car                             | Bin 0 -> 249 bytes
 3 files changed, 13 insertions(+), 2 deletions(-)
 create mode 100644 IPIP/0000-gateway-tar-response-format/inside-root.car
 create mode 100644 IPIP/0000-gateway-tar-response-format/outside-root.car

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 5120ca89f..e5c4baae1 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -53,11 +53,22 @@ This RFC is backwards compatible.
 Manually created UnixFS DAGs can be turned into malicious TAR files. For example,
 if a UnixFS directory contains a file that points at a relative path outside of
 its root, the unpacking of the TAR file may overwrite local files. In order to prevent
-this, all relative paths in the produced TAR **MUST** be sanitized/truncated to never
-go beyond the root of the exported directory.
+this, if the UnixFS directory contains a file that points at a relative path outside
+of the root, the TAR file creation **MUST** fail.
+
+To test this, we provide two car files:
+
+* ✅ [inside-root.car](0000-gateway-tar-response-format/inside-root.car) is a UnixFS DAG that contains
+a file with a relative path that points inside the root directory. Downloading it as a TAR must work.
+* ❌ [outside-root.car](0000-gateway-tar-response-format/outside-root.car) is a UnixFS DAG that contains
+a file with a relative path that points outside the root directory. Downloading it as a TAR must error.
 
 ### Alternatives
 
+One discussed alternative would be to support uncompressed ZIP files. However, TAR and
+TAR-related libraries are already supported in IPFS. Therefore, the addition of a TAR response
+format is facilitated, avoiding adding unnecessary libraries.
+
 An alternative was considered to also support [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
 However, there is a concern that that may be a vector for DOS attacks since compression requires
 high CPU power.
diff --git a/IPIP/0000-gateway-tar-response-format/inside-root.car b/IPIP/0000-gateway-tar-response-format/inside-root.car
new file mode 100644
index 0000000000000000000000000000000000000000..c37b594f8d6d132f3d3ef955b7b2270302f3b574
GIT binary patch
literal 383
zcmcColv<RZUsBw7Ln}g+fw4eHK~>ee^xFHkc@K`SV?H{4`bU*@S0~udT5xce(!=Q&
z`4-$uFH0>d&dkqaj37p}kRF!`NF7V9N~fsTRp-u?;^j5_^n32ysn~q^+RC22)y!qz
zgARrYv8CnbCnXkfF>x?P6Q#irV(`1uv2n9Mx30H1R<)FoX-6hgLt#_gqO@SXiDDIH
zM?cOJ;!MdbN=+`wFRFx_O;8WW>`)<vn~XkgDlJ}1cO4cfx6RI&btV0mpR82C!W}E;
oMos;$|5b=xPftHBGbdGo4`j9xF?u{wb8_-^6w339a#9qz07cTFga7~l

literal 0
HcmV?d00001

diff --git a/IPIP/0000-gateway-tar-response-format/outside-root.car b/IPIP/0000-gateway-tar-response-format/outside-root.car
new file mode 100644
index 0000000000000000000000000000000000000000..7587dcb7efae5c7a5fac5d94539c131eacc83537
GIT binary patch
literal 249
zcmcColv<RZUsBw7Ln}g+fw4eH!NLD(^q$bi9vo@MdlU|yDtT~TTJ%+pkHg`!Cpwfa
zgdR;VOD!tS%+F)&WF$tpkO7wpW2lhAO-3I#l@_n1yAF$#+h%9Xx|06OPgW{m;f|Ga
zqo#h>|0=|$r>CEmpD)2Dq)Vg@=A^_T2|g|+4n`wlZ170U$;sDID9<m-Nm1ki0CQ(#
A%K!iX

literal 0
HcmV?d00001


From b0efa1feedc152cf8f489d070cddff1fa668fa84 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Thu, 6 Oct 2022 13:38:25 +0200
Subject: [PATCH 08/25] ipip(tar): update security to include CAR

---
 IPIP/0000-gateway-tar-response-format.md | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index e5c4baae1..0a0d31607 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -54,14 +54,18 @@ Manually created UnixFS DAGs can be turned into malicious TAR files. For example
 if a UnixFS directory contains a file that points at a relative path outside of
 its root, the unpacking of the TAR file may overwrite local files. In order to prevent
 this, if the UnixFS directory contains a file that points at a relative path outside
-of the root, the TAR file creation **MUST** fail.
+of the root, the TAR file creation **must** fail.
 
 To test this, we provide two car files:
 
-* ✅ [inside-root.car](0000-gateway-tar-response-format/inside-root.car) is a UnixFS DAG that contains
-a file with a relative path that points inside the root directory. Downloading it as a TAR must work.
-* ❌ [outside-root.car](0000-gateway-tar-response-format/outside-root.car) is a UnixFS DAG that contains
-a file with a relative path that points outside the root directory. Downloading it as a TAR must error.
+* ✅ [inside-root.car](0000-gateway-tar-response-format/inside-root.car) is a UnixFS
+DAG that contains a file with a relative path that points inside the root directory.
+Downloading it as a TAR must work.
+* ❌ [outside-root.car](0000-gateway-tar-response-format/outside-root.car) is a UnixFS
+DAG that contains a file with a relative path that points outside the root directory.
+Downloading it as a TAR must error.
+
+The user should be suggested to use a CAR file if they really want to download the raw files.
 
 ### Alternatives
 

From 4a7138de4200e27c6cd2e5c196e9658ed72770fb Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Thu, 6 Oct 2022 13:46:53 +0200
Subject: [PATCH 09/25] ipip(tar): add error info

---
 IPIP/0000-gateway-tar-response-format.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 0a0d31607..c7a4caff6 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -54,7 +54,8 @@ Manually created UnixFS DAGs can be turned into malicious TAR files. For example
 if a UnixFS directory contains a file that points at a relative path outside of
 its root, the unpacking of the TAR file may overwrite local files. In order to prevent
 this, if the UnixFS directory contains a file that points at a relative path outside
-of the root, the TAR file creation **must** fail.
+of the root, the TAR file creation **must** fail using the [Trailer Header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Trailer)
+`X-Stream-Error` to indicate the error in a human-readable format.
 
 To test this, we provide two car files:
 

From bff09c4a2e21b14401ed24cc0f9ab9b91d05a032 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 7 Oct 2022 09:39:01 +0200
Subject: [PATCH 10/25] ipip(tar): remove .car, update error

---
 IPIP/0000-gateway-tar-response-format.md          |   8 ++++----
 .../inside-root.car                               | Bin 383 -> 0 bytes
 .../outside-root.car                              | Bin 249 -> 0 bytes
 3 files changed, 4 insertions(+), 4 deletions(-)
 delete mode 100644 IPIP/0000-gateway-tar-response-format/inside-root.car
 delete mode 100644 IPIP/0000-gateway-tar-response-format/outside-root.car

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index c7a4caff6..624c0d975 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -54,15 +54,15 @@ Manually created UnixFS DAGs can be turned into malicious TAR files. For example
 if a UnixFS directory contains a file that points at a relative path outside of
 its root, the unpacking of the TAR file may overwrite local files. In order to prevent
 this, if the UnixFS directory contains a file that points at a relative path outside
-of the root, the TAR file creation **must** fail using the [Trailer Header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Trailer)
-`X-Stream-Error` to indicate the error in a human-readable format.
+of the root, the TAR file creation **must** fail by force-closing the connection, leading
+to a network error.
 
 To test this, we provide two car files:
 
-* ✅ [inside-root.car](0000-gateway-tar-response-format/inside-root.car) is a UnixFS
+* ✅ [bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y](https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y) is a UnixFS
 DAG that contains a file with a relative path that points inside the root directory.
 Downloading it as a TAR must work.
-* ❌ [outside-root.car](0000-gateway-tar-response-format/outside-root.car) is a UnixFS
+* ❌ [bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu](https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu) is a UnixFS
 DAG that contains a file with a relative path that points outside the root directory.
 Downloading it as a TAR must error.
 
diff --git a/IPIP/0000-gateway-tar-response-format/inside-root.car b/IPIP/0000-gateway-tar-response-format/inside-root.car
deleted file mode 100644
index c37b594f8d6d132f3d3ef955b7b2270302f3b574..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 383
zcmcColv<RZUsBw7Ln}g+fw4eHK~>ee^xFHkc@K`SV?H{4`bU*@S0~udT5xce(!=Q&
z`4-$uFH0>d&dkqaj37p}kRF!`NF7V9N~fsTRp-u?;^j5_^n32ysn~q^+RC22)y!qz
zgARrYv8CnbCnXkfF>x?P6Q#irV(`1uv2n9Mx30H1R<)FoX-6hgLt#_gqO@SXiDDIH
zM?cOJ;!MdbN=+`wFRFx_O;8WW>`)<vn~XkgDlJ}1cO4cfx6RI&btV0mpR82C!W}E;
oMos;$|5b=xPftHBGbdGo4`j9xF?u{wb8_-^6w339a#9qz07cTFga7~l

diff --git a/IPIP/0000-gateway-tar-response-format/outside-root.car b/IPIP/0000-gateway-tar-response-format/outside-root.car
deleted file mode 100644
index 7587dcb7efae5c7a5fac5d94539c131eacc83537..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 249
zcmcColv<RZUsBw7Ln}g+fw4eH!NLD(^q$bi9vo@MdlU|yDtT~TTJ%+pkHg`!Cpwfa
zgdR;VOD!tS%+F)&WF$tpkO7wpW2lhAO-3I#l@_n1yAF$#+h%9Xx|06OPgW{m;f|Ga
zqo#h>|0=|$r>CEmpD)2Dq)Vg@=A^_T2|g|+4n`wlZ170U$;sDID9<m-Nm1ki0CQ(#
A%K!iX


From 8ea95434b3d21007766bcd90f2954caef5cc29f3 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 7 Oct 2022 13:43:28 +0200
Subject: [PATCH 11/25] cleanup summary and motivation

---
 IPIP/0000-gateway-tar-response-format.md | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 624c0d975..743a00b14 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -1,6 +1,6 @@
 # IPIP 0000: Gateway TAR Response Format
 
-- Start Date: (format: 2022-10-10)
+- Start Date: 2022-06-10
 - Related Issues:
   - [ipfs/specs/pull/288](https://github.com/ipfs/specs/pull/288)
   - [ipfs/go-ipfs/pull/9029](https://github.com/ipfs/go-ipfs/pull/9029)
@@ -8,14 +8,19 @@
 
 ## Summary
 
-Add TAR as a response format for the [HTTP Gateway](../http-gateways/).
+Add TAR response format to the [HTTP Gateway](../http-gateways/).
 
 ## Motivation
 
 Currently, the HTTP Gateway only allows the download of single files, or
-CAR archives. However, CAR files are sometimes not necessary and user may
-want to download entire directories. An example use case is for the IPFS
-Web UI, where users are able to download files or directories.
+CAR archives. However, CAR files are sometimes not necessary and users may
+want to download entire directories.
+
+An example use case is for the IPFS Web UI, which currently allows users to
+download directories using a workaround. This workaround works via an API
+that only supports `POST` requests and the Web UI has to store the entire
+directory in memory before the user can download it. By introducing TAR files
+on the HTTP Gateway, we improve the way of downloading entire directories.
 
 ## Detailed design
 

From aff0fb2f67e9f6ae75514732e0deec3f3e1a2984 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 7 Oct 2022 14:49:03 +0200
Subject: [PATCH 12/25] add fixture info

---
 IPIP/0000-gateway-tar-response-format.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 743a00b14..e91f3039f 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -35,6 +35,9 @@ Existing `curl` and `tar` tools can be used by implementers for testing.
 Providing static test vectors has little value here, as different TAR libraries may produce
 different byte-to-byte files due to unspecified ordering of files and directories inside.
 
+There are relevant fixtures for testing certain security concerns and behaviors.
+These are referred on the following sections by their CIDs.
+
 ## Design rationale
 
 The current gateway already supports different response formats via the

From a29735a250220616c81c7bee81c3a71b83ee0c02 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Fri, 7 Oct 2022 15:13:22 +0200
Subject: [PATCH 13/25] cleanup security

---
 IPIP/0000-gateway-tar-response-format.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index e91f3039f..a32be2235 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -62,15 +62,15 @@ Manually created UnixFS DAGs can be turned into malicious TAR files. For example
 if a UnixFS directory contains a file that points at a relative path outside of
 its root, the unpacking of the TAR file may overwrite local files. In order to prevent
 this, if the UnixFS directory contains a file that points at a relative path outside
-of the root, the TAR file creation **must** fail by force-closing the connection, leading
-to a network error.
+of the root, the TAR file download **must** fail by force-closing the HTTP connection,
+leading to a network error.
 
 To test this, we provide two car files:
 
-* ✅ [bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y](https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y) is a UnixFS
+* ✔ [bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y](https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y) is a UnixFS
 DAG that contains a file with a relative path that points inside the root directory.
 Downloading it as a TAR must work.
-* ❌ [bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu](https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu) is a UnixFS
+* ✘ [bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu](https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu) is a UnixFS
 DAG that contains a file with a relative path that points outside the root directory.
 Downloading it as a TAR must error.
 

From c1ebab60102f84e71feb01fa9dc25ed809925184 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Mon, 10 Oct 2022 11:25:10 +0200
Subject: [PATCH 14/25] ipip(tar): update wording

---
 IPIP/0000-gateway-tar-response-format.md | 25 ++++++++++++------------
 1 file changed, 12 insertions(+), 13 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index a32be2235..71e03ae1f 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -34,9 +34,8 @@ Existing `curl` and `tar` tools can be used by implementers for testing.
 
 Providing static test vectors has little value here, as different TAR libraries may produce
 different byte-to-byte files due to unspecified ordering of files and directories inside.
-
-There are relevant fixtures for testing certain security concerns and behaviors.
-These are referred on the following sections by their CIDs.
+However, there are relevant fixtures for testing certain behaviors. These are
+referred by their CID on the following sections.
 
 ## Design rationale
 
@@ -60,10 +59,11 @@ This RFC is backwards compatible.
 
 Manually created UnixFS DAGs can be turned into malicious TAR files. For example,
 if a UnixFS directory contains a file that points at a relative path outside of
-its root, the unpacking of the TAR file may overwrite local files. In order to prevent
-this, if the UnixFS directory contains a file that points at a relative path outside
-of the root, the TAR file download **must** fail by force-closing the HTTP connection,
-leading to a network error.
+its root, the unpacking of the TAR file may overwrite local files.
+
+In order to prevent this, if the UnixFS directory contains a file whose path
+points outside of the root, the TAR file download **must** fail by force-closing
+the HTTP connection, leading to a network error.
 
 To test this, we provide two car files:
 
@@ -74,17 +74,16 @@ Downloading it as a TAR must work.
 DAG that contains a file with a relative path that points outside the root directory.
 Downloading it as a TAR must error.
 
-The user should be suggested to use a CAR file if they really want to download the raw files.
+The user should be suggested to use a CAR file if they want to download the raw files.
 
 ### Alternatives
 
 One discussed alternative would be to support uncompressed ZIP files. However, TAR and
-TAR-related libraries are already supported in IPFS. Therefore, the addition of a TAR response
-format is facilitated, avoiding adding unnecessary libraries.
+TAR-related libraries are already supported and implemented for UnixFS files. Therefore,
+the addition of a TAR response format is facilitated.
 
-An alternative was considered to also support [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
-However, there is a concern that that may be a vector for DOS attacks since compression requires
-high CPU power.
+In addition, we considered supporting [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
+However, there it may be a vector for DOS attacks since compression requires high CPU power.
 
 ### Copyright
 

From a00ed4dfe2ac4207a858b7e36efdcb8fde8fe2b9 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Mon, 10 Oct 2022 14:11:13 +0200
Subject: [PATCH 15/25] ipip(tar): add info about root file/dir

---
 http-gateways/PATH_GATEWAY.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 98d902544..7f17e247f 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -181,7 +181,7 @@ For example:
 
 - [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable raw [block](https://docs.ipfs.io/concepts/glossary/#block) to be returned
 - [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable [CAR](https://docs.ipfs.io/concepts/glossary/#car) stream to be returned
-- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – returns UnixFS file or a directory as a  [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) stream.  Produces 400 Bad Request  for content that is not UnixFS.
+- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – returns UnixFS file or a directory as a [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) stream. At the root of the TAR archive, a file or directory, with the CID of the content, is present. Produces 400 Bad Request for content that is not UnixFS.
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - application/vnd.ipld.dag-json OR application/json – requests IPLD Data Model representation serialized into [DAG-JSON format](https://ipld.io/docs/codecs/known/dag-json/)
 - application/vnd.ipld.dag-cbor OR application/cbor - requests IPLD Data Model representation serialized into [DAG-CBOR format](https://ipld.io/docs/codecs/known/dag-cbor/)

From 46aca5a15f2172f47d616a7501368363db2b12ec Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Mon, 10 Oct 2022 15:57:37 +0200
Subject: [PATCH 16/25] Update IPIP/0000-gateway-tar-response-format.md

Co-authored-by: Marcin Rataj <lidel@lidel.org>
---
 IPIP/0000-gateway-tar-response-format.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 71e03ae1f..74edfb846 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -49,7 +49,7 @@ Users will be able to directly download UnixFs directories from the gateway. In
 for example, we will be able to create a direct link to download the file, instead of using the
 API to put the whole file in memory before downloading it, saving resources and avoiding bugs.
 
-CLI users will be able to download a directory with existing tools like `curl` and `tar`.
+CLI users will be able to download a directory with existing tools like `curl` and `tar` without having to talk to implementation-specific RPC APIs like `/api/v0/get`.
 
 ### Compatibility
 

From 64db0f0e877ef79bdfd512dd1acc9b3a6410bdf7 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Wed, 12 Oct 2022 12:47:39 +0200
Subject: [PATCH 17/25] improve test fixtures

---
 IPIP/0000-gateway-tar-response-format.md | 41 +++++++++++++++---------
 1 file changed, 25 insertions(+), 16 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 74edfb846..f9c583009 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -32,10 +32,22 @@ URL query.
 
 Existing `curl` and `tar` tools can be used by implementers for testing.
 
-Providing static test vectors has little value here, as different TAR libraries may produce
-different byte-to-byte files due to unspecified ordering of files and directories inside.
-However, there are relevant fixtures for testing certain behaviors. These are
-referred by their CID on the following sections.
+Providing static test vectors has little value here, as different TAR libraries
+may produce different byte-to-byte files due to unspecified ordering of files and
+directories inside.
+
+However, there are certain behaviors, detailed in the [security section](#security)
+that should be handled. To test such behaviors, the following fixtures can be used:
+
+- [`bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y`][inside-dag] is a UnixFS
+DAG that contains a file with a relative path that points inside the root directory.
+Downloading it as a TAR must work.
+- [`bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq`][inside-dag-tar] is an
+example TAR file that corresponds to the aforementioned UnixFS DAG. Its structure can be
+inspected in order to check if new implementations conform to the specification.
+- [`bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu`][outside-dag] is a UnixFS
+DAG that contains a file with a relative path that points outside the root directory.
+Downloading it as a TAR must error.
 
 ## Design rationale
 
@@ -49,7 +61,8 @@ Users will be able to directly download UnixFs directories from the gateway. In
 for example, we will be able to create a direct link to download the file, instead of using the
 API to put the whole file in memory before downloading it, saving resources and avoiding bugs.
 
-CLI users will be able to download a directory with existing tools like `curl` and `tar` without having to talk to implementation-specific RPC APIs like `/api/v0/get`.
+CLI users will be able to download a directory with existing tools like `curl` and `tar` without
+having to talk to implementation-specific RPC APIs like `/api/v0/get`.
 
 ### Compatibility
 
@@ -65,16 +78,8 @@ In order to prevent this, if the UnixFS directory contains a file whose path
 points outside of the root, the TAR file download **must** fail by force-closing
 the HTTP connection, leading to a network error.
 
-To test this, we provide two car files:
-
-* ✔ [bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y](https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y) is a UnixFS
-DAG that contains a file with a relative path that points inside the root directory.
-Downloading it as a TAR must work.
-* ✘ [bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu](https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu) is a UnixFS
-DAG that contains a file with a relative path that points outside the root directory.
-Downloading it as a TAR must error.
-
-The user should be suggested to use a CAR file if they want to download the raw files.
+To test this, we provide some [test fixtures](#test-fixtures). The user should be
+suggested to use a CAR file if they want to download the raw files.
 
 ### Alternatives
 
@@ -87,4 +92,8 @@ However, there it may be a vector for DOS attacks since compression requires hig
 
 ### Copyright
 
-Copyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).
\ No newline at end of file
+Copyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).
+
+[inside-dag]: https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y
+[inside-dag-tar]: https://dweb.link/ipfs/bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq
+[outside-dag]: https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu

From 75dc76d09a440dd045a736ae77fe35390fff4384 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Wed, 12 Oct 2022 12:59:09 +0200
Subject: [PATCH 18/25] lint path gateway

---
 http-gateways/PATH_GATEWAY.md | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 7f17e247f..102e4d3a7 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -195,7 +195,6 @@ blocks.
 Gateway implementations SHOULD be smart enough to require only the minimal DAG subset
 necessary for handling the range request.
 
-
 NOTE: for more advanced use cases such as partial DAG/CAR streaming, or
 non-UnixFS data structures, see the `selector` query parameter
 [proposal](https://github.com/ipfs/go-ipfs/issues/8769).
@@ -259,7 +258,6 @@ In case of `Accept: application/x-tar`, the `?format=` equivalent is `tar`.
     - This is a powerful primitive that allows for fetching subsets of data in specific order, either as raw bytes, or a CAR stream. Think “HTTP range requests”, but for IPLD, and more powerful.
 -->
 
-
 # HTTP Response
 
 ## Response Status Codes
@@ -377,7 +375,6 @@ and CDNs, implementations should base it on both CID and response type:
   should be based on requested range in addition to CID and response format:
   `Etag: "bafy..foo.0-42`
 
-
 ### `Cache-Control` (response header)
 
 Used for HTTP caching.
@@ -438,6 +435,7 @@ or optional [`filename`](#filename-request-query-parameter) parameter)
 and magic bytes to improve the utility of produced responses.
 
 For example:
+
 - detect plain text file
   and return `Content-Type: text/plain` instead of `application/octet-stream`
 - detect SVG image
@@ -451,6 +449,7 @@ Returned when `download`, `filename` query parameter, or a custom response
 The first parameter passed in this header indicates if content should be
 displayed `inline` by the browser, or sent as an `attachment` that opens the
 “Save As” dialog:
+
 - `Content-Disposition: inline` is the default, returned when request was made
   with  `download=false`  or a custom `filename` was provided with the request
   without any explicit `download` parameter.
@@ -466,9 +465,10 @@ agents and existing web browsers.
 
 To illustrate, `?filename=testтест.pdf` should produce:
 `Content-Disposition inline; filename="test____.jpg"; filename*=UTF-8''test%D1%82%D0%B5%D1%81%D1%82.jpg`
-  - ASCII representation must have non-ASCII characters replaced with `_`
-  - UTF-8 representation must be wrapped in Percent Encoding ([RFC 3986, Section 2.1](https://www.rfc-editor.org/rfc/rfc3986.html#section-2.1)).
-    - NOTE: `UTF-8''` is not a typo – see [Examples in RFC5987](https://datatracker.ietf.org/doc/html/rfc5987#section-3.2.2)
+
+- ASCII representation must have non-ASCII characters replaced with `_`
+- UTF-8 representation must be wrapped in Percent Encoding ([RFC 3986, Section 2.1](https://www.rfc-editor.org/rfc/rfc3986.html#section-2.1)).
+  - NOTE: `UTF-8''` is not a typo – see [Examples in RFC5987](https://datatracker.ietf.org/doc/html/rfc5987#section-3.2.2)
 
 `Content-Disposition` must be also set when a binary response format was requested:
 
@@ -515,8 +515,9 @@ This header is more widely used in [SUBDOMAIN_GATEWAY.md](./SUBDOMAIN_GATEWAY.md
 
 Gateway MUST return a redirect when a valid UnixFS directory was requested
 without the trailing `/`, for example:
+
 - response for `https://ipfs.io/ipns/en.wikipedia-on-ipfs.org/wiki`
-	(no trailing slash) will be HTTP 301 redirect with
+ (no trailing slash) will be HTTP 301 redirect with
   `Location: /ipns/en.wikipedia-on-ipfs.org/wiki/`
 
 ### `X-Ipfs-Path` (response header)
@@ -633,6 +634,7 @@ low level logical pathing from IPLD:
 ### Handling traversal errors
 
 Gateway MUST respond with HTTP error when it is not possible to traverse the requested content path:
+
 - [`404 Not Found`](#404-not-found) should be returned when the root CID is valid and traversable, but
 the DAG it represents does not include content path remainder.
   - Error response body should indicate which part of immutable content path (`/ipfs/{cid}/path/to/file`) is missing
@@ -660,6 +662,7 @@ Implementations are encouraged to support pluggable denylists to allow IPFS
 node operators to opt into not hosting previously flagged content.
 
 Gateway MUST respond with HTTP error when requested CID is on any of active denylists:
+
 - [410 Gone](#410-gone) returned when CID is denied for non-legal reasons, or when the exact reason is unknown
 - [451 Unavailable For Legal Reasons](#451-unavailable-for-legal-reasons) returned when denylist indicates that content was blocked on legal basis
 

From 49053ec3f69296aae4097c6a46d198fb67e1f96c Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Wed, 12 Oct 2022 13:01:16 +0200
Subject: [PATCH 19/25] fix lint

---
 http-gateways/PATH_GATEWAY.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 102e4d3a7..c570b5dc7 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -1,6 +1,6 @@
 # Path Gateway Specification
 
-![](https://img.shields.io/badge/status-wip-orange.svg?style=flat-square)
+![Status: Work In Progress](https://img.shields.io/badge/status-wip-orange.svg?style=flat-square)
 
 **Authors**:
 

From dbd656cc34ff02a8ef224478651ed113c0ce4a98 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Wed, 12 Oct 2022 13:17:07 +0200
Subject: [PATCH 20/25] update title

---
 IPIP/0000-gateway-tar-response-format.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index f9c583009..ba199131d 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -1,4 +1,4 @@
-# IPIP 0000: Gateway TAR Response Format
+# IPIP 0000: TAR Response Format on Web Gateways
 
 - Start Date: 2022-06-10
 - Related Issues:

From 3766a6b0caccbf33ed30db698407e9cf9b3f4f75 Mon Sep 17 00:00:00 2001
From: Marcin Rataj <lidel@lidel.org>
Date: Thu, 13 Oct 2022 18:34:58 +0200
Subject: [PATCH 21/25] ipip(tar): editorial tweaks

---
 IPIP/0000-gateway-tar-response-format.md | 54 ++++++++++++++++--------
 1 file changed, 37 insertions(+), 17 deletions(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index ba199131d..077578a67 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -12,15 +12,24 @@ Add TAR response format to the [HTTP Gateway](../http-gateways/).
 
 ## Motivation
 
-Currently, the HTTP Gateway only allows the download of single files, or
-CAR archives. However, CAR files are sometimes not necessary and users may
-want to download entire directories.
+Currently, the HTTP Gateway only allows for UnixFS deserialization of a single
+UnixFS file. Directories have to be downloaded one file at a time, using
+multiple requests, or as a CAR, which requires deserialization in userland,
+via additional tools like [ipfs-car](https://www.npmjs.com/package/ipfs-car).
+
+This is to illustrate we have a functional gap where user is currently unable
+to leverage trusted HTTP gateway for deserializing UnixFS directory tree. We
+would like to remove the need for dealing with CARs when a gateway is trusted
+(e.g., a localhost gateway).
 
 An example use case is for the IPFS Web UI, which currently allows users to
-download directories using a workaround. This workaround works via an API
-that only supports `POST` requests and the Web UI has to store the entire
-directory in memory before the user can download it. By introducing TAR files
-on the HTTP Gateway, we improve the way of downloading entire directories.
+download directories using a workaround. This workaround works via a proprietary
+Kubo RPC API that only supports `POST` requests and the Web UI has to store the entire
+directory in memory before the user can download it.
+
+By introducing TAR responses on the HTTP Gateway, we provide vendor-agnosic way
+of downloading entire directories in deserialized form, which increases utility
+and interop provided by HTTP gateways.
 
 ## Detailed design
 
@@ -57,25 +66,35 @@ one more supported format to that list.
 
 ### User benefit
 
-Users will be able to directly download UnixFs directories from the gateway. In the Web UI,
-for example, we will be able to create a direct link to download the file, instead of using the
-API to put the whole file in memory before downloading it, saving resources and avoiding bugs.
+Users will be able to directly download deserialized UnixFS directories from
+the gateway. Having a single TAR stream is saving resources on both client and
+HTTP server, and removes complexity related to redundant buffering or CAR
+deserialization when gateway is trusted.
+
+In the Web UI, for example, we will be able to create a direct link to download
+a directory, instead of using the API to put the whole file in memory before
+downloading it.
 
 CLI users will be able to download a directory with existing tools like `curl` and `tar` without
-having to talk to implementation-specific RPC APIs like `/api/v0/get`.
+having to talk to implementation-specific RPC APIs like `/api/v0/get` from Kubo.
 
 ### Compatibility
 
-This RFC is backwards compatible.
+This IPIP is backwards compatible: adds a new opt-in response type, does not
+modify preexisting behaviors.
 
 ### Security
 
 Manually created UnixFS DAGs can be turned into malicious TAR files. For example,
-if a UnixFS directory contains a file that points at a relative path outside of
-its root, the unpacking of the TAR file may overwrite local files.
+if a UnixFS directory contains a file that points at a relative path outside
+its root, the unpacking of the TAR file may overwrite local files outside the expected
+destination.
+
+In order to prevent this, the specification requires implementations to do
+basic sanitization of paths returned inside a TAR response.
 
-In order to prevent this, if the UnixFS directory contains a file whose path
-points outside of the root, the TAR file download **must** fail by force-closing
+If the UnixFS directory contains a file whose path
+points outside the root, the TAR file download **must** fail by force-closing
 the HTTP connection, leading to a network error.
 
 To test this, we provide some [test fixtures](#test-fixtures). The user should be
@@ -85,7 +104,8 @@ suggested to use a CAR file if they want to download the raw files.
 
 One discussed alternative would be to support uncompressed ZIP files. However, TAR and
 TAR-related libraries are already supported and implemented for UnixFS files. Therefore,
-the addition of a TAR response format is facilitated.
+the addition of a TAR response format is facilitated, while introduction of ZIP would increase
+implementation complexity.
 
 In addition, we considered supporting [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
 However, there it may be a vector for DOS attacks since compression requires high CPU power.

From e3bc88b8a61c8f8c47ed617bf0065885374e900f Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Tue, 18 Oct 2022 11:46:12 +0200
Subject: [PATCH 22/25] rfc --> ipip

---
 IPIP/0000-gateway-tar-response-format.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 077578a67..571be8092 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -61,7 +61,7 @@ Downloading it as a TAR must error.
 ## Design rationale
 
 The current gateway already supports different response formats via the
-`Accept` HTTP header and the `format` URL query. This RFC proposes adding
+`Accept` HTTP header and the `format` URL query. This IPIP proposes adding
 one more supported format to that list.
 
 ### User benefit

From 101adf2c6769287a555f37b1904e53bf3dcb2f82 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Tue, 18 Oct 2022 11:46:36 +0200
Subject: [PATCH 23/25] must -> should

---
 IPIP/0000-gateway-tar-response-format.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0000-gateway-tar-response-format.md
index 571be8092..6b6be4be0 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0000-gateway-tar-response-format.md
@@ -94,7 +94,7 @@ In order to prevent this, the specification requires implementations to do
 basic sanitization of paths returned inside a TAR response.
 
 If the UnixFS directory contains a file whose path
-points outside the root, the TAR file download **must** fail by force-closing
+points outside the root, the TAR file download **should** fail by force-closing
 the HTTP connection, leading to a network error.
 
 To test this, we provide some [test fixtures](#test-fixtures). The user should be

From 26fb3bec254a402bd4597c28d36692af720b1ed0 Mon Sep 17 00:00:00 2001
From: Henrique Dias <hacdias@gmail.com>
Date: Wed, 19 Oct 2022 13:40:21 +0200
Subject: [PATCH 24/25] add TAR to response payload

---
 http-gateways/PATH_GATEWAY.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index c570b5dc7..9207fd111 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -595,6 +595,8 @@ Data sent with HTTP response depends on the type of requested IPFS resource:
   - Opaque bytes, see [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw)
 - CAR
   - CAR file or stream, see [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car)
+- TAR
+  - TAR file or stream, see [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types)
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - dag-json / dag-cbor
   - See [https://github.com/ipfs/go-ipfs/issues/8823](https://github.com/ipfs/go-ipfs/issues/8823)

From 8fe745a2a680c1925cd566aa2679e8f36ba9cc63 Mon Sep 17 00:00:00 2001
From: Marcin Rataj <lidel@lidel.org>
Date: Wed, 9 Nov 2022 20:11:23 +0100
Subject: [PATCH 25/25] chore: editorial fixes

---
 ...md => 0288-gateway-tar-response-format.md} | 60 +++++++++++++------
 http-gateways/PATH_GATEWAY.md                 | 17 +++---
 2 files changed, 50 insertions(+), 27 deletions(-)
 rename IPIP/{0000-gateway-tar-response-format.md => 0288-gateway-tar-response-format.md} (69%)

diff --git a/IPIP/0000-gateway-tar-response-format.md b/IPIP/0288-gateway-tar-response-format.md
similarity index 69%
rename from IPIP/0000-gateway-tar-response-format.md
rename to IPIP/0288-gateway-tar-response-format.md
index 6b6be4be0..03d97ccb7 100644
--- a/IPIP/0000-gateway-tar-response-format.md
+++ b/IPIP/0288-gateway-tar-response-format.md
@@ -1,4 +1,4 @@
-# IPIP 0000: TAR Response Format on Web Gateways
+# IPIP-288: TAR Response Format on HTTP Gateways
 
 - Start Date: 2022-06-10
 - Related Issues:
@@ -48,15 +48,20 @@ directories inside.
 However, there are certain behaviors, detailed in the [security section](#security)
 that should be handled. To test such behaviors, the following fixtures can be used:
 
-- [`bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y`][inside-dag] is a UnixFS
-DAG that contains a file with a relative path that points inside the root directory.
-Downloading it as a TAR must work.
-- [`bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq`][inside-dag-tar] is an
-example TAR file that corresponds to the aforementioned UnixFS DAG. Its structure can be
-inspected in order to check if new implementations conform to the specification.
-- [`bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu`][outside-dag] is a UnixFS
-DAG that contains a file with a relative path that points outside the root directory.
-Downloading it as a TAR must error.
+- [`bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y`][inside-dag]
+  is a UnixFS DAG that contains a file with a name that looks like a relative
+  path that points inside the root directory. Downloading it as a TAR must
+  work.
+
+- [`bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq`][inside-dag-tar]
+  is an example TAR file that corresponds to the aforementioned UnixFS DAG. Its
+  structure can be inspected in order to check if new implementations conform
+  to the specification.
+
+- [`bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu`][outside-dag]
+  is a UnixFS DAG that contains a file with a name that looks like a relative
+  path that points outside the root directory. Downloading it as a TAR must
+  error.
 
 ## Design rationale
 
@@ -78,13 +83,28 @@ downloading it.
 CLI users will be able to download a directory with existing tools like `curl` and `tar` without
 having to talk to implementation-specific RPC APIs like `/api/v0/get` from Kubo.
 
+Fetching a directory from a local gateway will be as simple as:
+
+```console
+$ export DIR_CID=bafybeigccimv3zqm5g4jt363faybagywkvqbrismoquogimy7kvz2sj7sq
+$ curl "http://127.0.0.1:8080/ipfs/$DIR_CID?format=tar" | tar xv
+bafybeigccimv3zqm5g4jt363faybagywkvqbrismoquogimy7kvz2sj7sq
+bafybeigccimv3zqm5g4jt363faybagywkvqbrismoquogimy7kvz2sj7sq/1 - Barrel - Part 1 - alt.txt
+bafybeigccimv3zqm5g4jt363faybagywkvqbrismoquogimy7kvz2sj7sq/1 - Barrel - Part 1 - transcript.txt
+bafybeigccimv3zqm5g4jt363faybagywkvqbrismoquogimy7kvz2sj7sq/1 - Barrel - Part 1.png
+```
+
 ### Compatibility
 
 This IPIP is backwards compatible: adds a new opt-in response type, does not
 modify preexisting behaviors.
 
+Existing content type `application/x-tar` is used when request is made with an `Accept` header.
+
 ### Security
 
+Third-party UnixFS file names may include unexpected values, such as `../`.
+
 Manually created UnixFS DAGs can be turned into malicious TAR files. For example,
 if a UnixFS directory contains a file that points at a relative path outside
 its root, the unpacking of the TAR file may overwrite local files outside the expected
@@ -102,18 +122,20 @@ suggested to use a CAR file if they want to download the raw files.
 
 ### Alternatives
 
-One discussed alternative would be to support uncompressed ZIP files. However, TAR and
-TAR-related libraries are already supported and implemented for UnixFS files. Therefore,
-the addition of a TAR response format is facilitated, while introduction of ZIP would increase
-implementation complexity.
+One discussed alternative would be to support uncompressed ZIP files. However,
+TAR and TAR-related libraries are already supported by some IPFS
+implementations, and are easier to work with in CLI. TAR provides simpler
+abstraction, and layering compression on top of TAR stream allows for greater
+flexibility than alternative options that come with own, opinionated approaches
+to compression.
 
-In addition, we considered supporting [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034).
-However, there it may be a vector for DOS attacks since compression requires high CPU power.
+In addition, we considered supporting [Gzipped TAR](https://github.com/ipfs/go-ipfs/pull/9034) out of the box,
+but decided against it as gzip or alternative compression may be introduced on the HTTP transport layer.
 
 ### Copyright
 
 Copyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).
 
-[inside-dag]: https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y
-[inside-dag-tar]: https://dweb.link/ipfs/bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq
-[outside-dag]: https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu
+[inside-dag]: https://dweb.link/ipfs/bafybeibfevfxlvxp5vxobr5oapczpf7resxnleb7tkqmdorc4gl5cdva3y?format=car
+[inside-dag-tar]: https://dweb.link/ipfs/bafkreict7qp5aqs52445bk4o7iuymf3davw67tpqqiscglujx3w6r7hwoq?format=car
+[outside-dag]: https://dweb.link/ipfs/bafybeicaj7kvxpcv4neaqzwhrqqmdstu4dhrwfpknrgebq6nzcecfucvyu?format=car
diff --git a/http-gateways/PATH_GATEWAY.md b/http-gateways/PATH_GATEWAY.md
index 9207fd111..33c581fa9 100644
--- a/http-gateways/PATH_GATEWAY.md
+++ b/http-gateways/PATH_GATEWAY.md
@@ -1,6 +1,6 @@
 # Path Gateway Specification
 
-![Status: Work In Progress](https://img.shields.io/badge/status-wip-orange.svg?style=flat-square)
+![reliable](https://img.shields.io/badge/status-reliable-green.svg?style=flat-square)
 
 **Authors**:
 
@@ -181,7 +181,7 @@ For example:
 
 - [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable raw [block](https://docs.ipfs.io/concepts/glossary/#block) to be returned
 - [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car) – disables [IPLD codec deserialization](https://ipld.io/docs/codecs/), requests a verifiable [CAR](https://docs.ipfs.io/concepts/glossary/#car) stream to be returned
-- [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types) – returns UnixFS file or a directory as a [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) stream. At the root of the TAR archive, a file or directory, with the CID of the content, is present. Produces 400 Bad Request for content that is not UnixFS.
+- [application/x-tar](https://en.wikipedia.org/wiki/Tar_(computing)) – returns UnixFS tree (files and directories) as a [TAR](https://en.wikipedia.org/wiki/Tar_(computing)) stream. Returned tree starts at a root item which name is the same as the requested CID. Produces 400 Bad Request for content that is not UnixFS.
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - application/vnd.ipld.dag-json OR application/json – requests IPLD Data Model representation serialized into [DAG-JSON format](https://ipld.io/docs/codecs/known/dag-json/)
 - application/vnd.ipld.dag-cbor OR application/cbor - requests IPLD Data Model representation serialized into [DAG-CBOR format](https://ipld.io/docs/codecs/known/dag-cbor/)
@@ -366,10 +366,11 @@ and CDNs, implementations should base it on both CID and response type:
   - Example: `Etag: "DirIndex-2B423AF_CID-bafy…foo"`
 
 - When a gateway can’t guarantee byte-for-byte identical responses, a “weak”
-  etag should be used. For example, if CAR is streamed, and blocks arrive in
-  non-deterministic order, the response should have `Etag: W/"bafy…foo.car"`.
-  If TAR is generated by traversing an UnixFS directory in non-deterministic
-  order, the response should have `Etag: W/"bafy…foo.tar"`.
+  etag should be used.
+  - Example: If CAR is streamed, and blocks arrive in non-deterministic order,
+    the response should have `Etag: W/"bafy…foo.car"`.
+  - Example: If TAR stream is generated by traversing an UnixFS directory in non-deterministic
+    order, the response should have `Etag: W/"bafy…foo.x-tar"`.
 
 - When responding to [`Range`](#range-request-header) request, a strong `Etag`
   should be based on requested range in addition to CID and response format:
@@ -594,9 +595,9 @@ Data sent with HTTP response depends on the type of requested IPFS resource:
 - Raw block
   - Opaque bytes, see [application/vnd.ipld.raw](https://www.iana.org/assignments/media-types/application/vnd.ipld.raw)
 - CAR
-  - CAR file or stream, see [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car)
+  - Arbitrary DAG as a verifiable CAR file or a stream, see [application/vnd.ipld.car](https://www.iana.org/assignments/media-types/application/vnd.ipld.car)
 - TAR
-  - TAR file or stream, see [application/x-tar](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types)
+  - Deserialized UnixFS files and directories as a TAR file or a stream, see [application/x-tar](https://en.wikipedia.org/wiki/Tar_(computing))
 <!-- TODO: https://github.com/ipfs/go-ipfs/issues/8823
 - dag-json / dag-cbor
   - See [https://github.com/ipfs/go-ipfs/issues/8823](https://github.com/ipfs/go-ipfs/issues/8823)