[Bug 2115530] Re: Hardcoded OPENSSL_TLS_SECURITY_LEVEL=2 breaks MongoDB Atlas SSL connections
Ravi Kant Sharma
2115530 at bugs.launchpad.net
Wed Feb 25 16:19:40 UTC 2026
Correction: It is not hardcoded, it is the default upstream in Ubuntu
24.04
https://github.com/openssl/openssl/commit/b3a33dac8880b88038083b64d234506659921436
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2115530
Title:
Hardcoded OPENSSL_TLS_SECURITY_LEVEL=2 breaks MongoDB Atlas SSL
connections
Status in openssl package in Ubuntu:
Won't Fix
Bug description:
Ubuntu 24.04 OpenSSL package compiled with hardcoded
DOPENSSL_TLS_SECURITY_LEVEL=2 causes SSL handshake failures with MongoDB
Atlas.
Error: SSL routines:ssl3_read_bytes:tlsv1 alert internal error
(alert 80)
Impact: All MongoDB Atlas connections fail from Ubuntu 24.04 systems
Affects: mongosh, Node.js applications, Python pymongo, etc.
The hardcoded security level cannot be overridden at runtime, breaking
compatibility with legitimate cloud services.
Workaround: Install older libssl1.1 package
Suggested fix: Remove hardcoded security level or provide override
mechanism
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/2115530/+subscriptions
More information about the foundations-bugs
mailing list