ERR_HTTP2_PROTOCOL_ERROR from openlayers.org for Kapersky users

Latest reply from Kapersky

We received an update from our expert, sadly, waiting a patch H is the only fixed resolution which will be rolling out in 31st of January till 14th of February 2022. Otherwise if you can’t wait you can add the website from the Kaspersky application to the trusted address. And for not for user we could offer to add exclusion for this page via trafmon, but the page not so popular (alexa.com rating). Also, we do not have any other requests except this one from developers.

I don’t understand what that means and asked for clarification.

I have the same problem in google chrome. Works with Microsoft Edge or if I disable Kaspersky.

Thanks for confirming the issue, @Rskut.

I reached out to Kapersky technical support and they confirmed that this is an issue with Kapersky Internet Security. They have put together a patch (version ‘H’) and expect it to be released between January 31 and February 14. As a workaround, Kapersky users can add openlayers.org to the list of trusted domains under Settings → Network settings → Trusted addresses → Add

I asked if openlayers.org could get added to a list of allowed sites on their side or if there was anything else we could do on our side (e.g. disable http2) to make it so Kapersky users could access the site before the patch was released (without knowing about the workaround above). They said they would get back to me on that.

Transcript of the support chat below.

Support Hi! This is Support and I am your representative for this chat. Let me read your concern first. Just give me 1-3 minutes. Thanks Thank you for patiently waiting. Upon reading your description request that you are having an issue to access the website?

Me Yes. Are you able to access https://openlayers.org with Kapersky enabled?

Support I am sorry to hear about that. I will try my best to help you with your concern. I checked the website and unable to access too.

Me But it works as expected without Kapersky.

Support When you disabled Kaspersky, it will work?

Me It looks like other people are having similar problems here: https://community.kaspersky.com/kaspersky-internet-security-13/kaspersky-err-http2-protocol-error-on-particular-sites-22180

Support Alright Just wanted to clarify if Kaspersky is disabled, is it working?

Me And yes, it sounds like it works without Kapersky. I’m on a phone right now and don’t have Kapersky here.

Support Alright Can you please try to add the website in trusted addresss? You may follow this guide : Settings → Network settings → Trusted addresses → Add. As currently on the community of Kaspersky this was a temporary resolution only.

Me Is there another solution? I help manage the website and cannot configure all of our visitors machines.

Support As this was a bug and will fix on Patch H. It will be resolved on Patch H which will be roll out starting 31st of January till 14th of February.

Me Is there another “allowed list” that the site can be added to on your side? Or is the only workaround to have all site visitors reconfigure Kapersky?

Support The only temporary resolution for now is to add it to trusted address in network settings. As it will be totally fixed on Patch H. I tried to add the website : https://openlayers.org/ and it was working from my end

Me I saw a reply about submitting the site to https://opentip.kaspersky.com/ - will this (or anything else) get it added to an allowed list on your side?

Support That is actually a website where in you can check if there’s any issue on any website. But that one is not a part of any resolution as it will be fix starting 31st of January till 14th of February 2022 If you wanted to access the websites while Kaspersky is enabled, please add the website in trusted address.

Me Is there anything we can do as site administrators to make the site work with Kapersky (before February)?

Support By adding website as trusted addresses. I already provided the temporary resolution for now and that’s the only resolution.

Me I’m not just interested in visiting the site myself. I’m looking for a solution for all the other visitors who might use Kapersky.

Support I do understand but let me try to consult this matter.

Me For example, should we disable http2 until the Kapersky patch is released?

Support Let me consult our expert about this matter and will update you. We apologies on this matter and we will make sure that the website will be added on the safe website to access. Are you the developer of the website or from the company of this website?

Me Both (sort of)

Support Thank you for the information. I will consult this case and will update you once I hear from our expert. Thank you for the patience and understanding to this matter. Would there be anything else that I can help you with?

Me That should do it. Thank you for your help.

Support You are most welcome. Have a great day and stay safe! I will proceed to close this chat session.