Bug 39744 - SIGBUS on FreeBSD 4.x (semi-reproducable)
Summary: SIGBUS on FreeBSD 4.x (semi-reproducable)
Status: RESOLVED WORKSFORME
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_ssl (show other bugs)
Version: 2.2.2
Hardware: Other FreeBSD
: P2 normal (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-06-07 09:52 UTC by Jeremy Chadwick
Modified: 2010-11-04 13:24 UTC (History)
2 users (show)


Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jeremy Chadwick 2006-06-07 09:52:23 UTC 
This isn't going to be fun to explain.

FreeBSD pentarou.parodius.com 4.11-STABLE FreeBSD 4.11-STABLE #0: Sun May 28 
12:02:42 PDT 2006     root@pentarou.parodius.com:/usr/o
bj/usr/src/sys/PENTAROU  i386

Situation:

Occasionally our production Apache server dumps core on
a SIGBUS:

pid 31008 (httpd), uid 0: exited on signal 10 (core dumped)

The time of the problem is very suspicious: a few seconds
after midnight, which is when our newsyslog is scheduled to
run for Apache logfiles.  Note that we send Apache a signal 30,
which is SIGUSR1:

/var/log/httpd-access.log               640  13    *    @T00  
B /var/run/httpd.pid 30
/var/log/httpd-error.log                640  13    *    @T00  
B /var/run/httpd.pid 30
/var/log/httpd-cgiwrap.log              640  13    *    @T00  Z
/var/log/suphp.log                      640  13    *    @T00  Z

Apache error_log says:

[Wed Jun 07 00:00:02 2006] [notice] Graceful restart requested, doing restart

Then the log rotates.  New log says:

[Wed Jun 07 00:00:02 2006] [notice] mod_bw : Memory Allocated 112 bytes (each 
conf takes 28 bytes)
[Wed Jun 07 00:00:02 2006] [notice] mod_bw : Version 0.7 - Initialized [4 Confs]
[Wed Jun 07 00:00:03 2006] [notice] seg fault or similar nasty error detected 
in the parent process

Where things get crazy: the core backtrace shows a problem that seems
to point to the FreeBSD crypto library.  Our system libraries *are
not* built with debugging symbols (but Apache is).  We have one SSL
virtualhost (support.parodius.com). Here's the bt full:

pentarou# gdb /usr/local/sbin/httpd httpd.31008.uid_0.core
GNU gdb 4.18 (FreeBSD)
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i386-unknown-freebsd"...Deprecated bfd_read called 
at /usr/src/gnu/usr.bin/binutils/gdb/../../../../contrib/gdb/gdb/dwarf2read.c 
line 3049 in dwarf2_read_section

Core was generated by `httpd'.
Program terminated with signal 10, Bus error.
Reading symbols from /usr/lib/libm.so.2...done.
Reading symbols from /usr/local/lib/libaprutil-1.so.2...done.
Reading symbols from /usr/local/lib/libexpat.so.6...done.
Reading symbols from /usr/local/lib/libiconv.so.3...done.
Reading symbols from /usr/local/lib/libapr-1.so.2...done.
Reading symbols from /usr/lib/libcrypt.so.2...done.
Reading symbols from /usr/lib/libc.so.4...done.
Reading symbols from /usr/local/libexec/apache22/mod_authn_file.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authn_dbm.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authn_anon.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authn_default.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_host.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_groupfile.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_user.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_dbm.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_owner.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_authz_default.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_auth_basic.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_include.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_filter.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_charset_lite.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_deflate.so...done.
Reading symbols from /usr/lib/libz.so.2...done.
Reading symbols from /usr/local/libexec/apache22/mod_log_config.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_logio.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_env.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_mime_magic.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_expires.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_headers.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_usertrack.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_unique_id.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_setenvif.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_version.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_ssl.so...done.
Reading symbols from /usr/lib/libssl.so.3...done.
Reading symbols from /usr/lib/libcrypto.so.3...done.
Reading symbols from /usr/local/libexec/apache22/mod_mime.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_autoindex.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_cgi.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_vhost_alias.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_negotiation.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_dir.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_actions.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_userdir.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_alias.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_rewrite.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_suphp.so...done.
Reading symbols from /usr/local/libexec/apache22/mod_bw.so...done.
Reading symbols from /usr/libexec/ld-elf.so.1...done.
#0  0x2847663c in engine_table_select () from /usr/lib/libcrypto.so.3
(gdb) bt full
#0  0x2847663c in engine_table_select () from /usr/lib/libcrypto.so.3
No symbol table info available.
#1  0x28454df4 in ENGINE_get_default_RSA () from /usr/lib/libcrypto.so.3
No symbol table info available.
#2  0x28453209 in RSA_new_method () from /usr/lib/libcrypto.so.3
No symbol table info available.
#3  0x2845309d in RSA_new () from /usr/lib/libcrypto.so.3
No symbol table info available.
#4  0x2846c6f7 in RSAPrivateKey_asn1_meth () from /usr/lib/libcrypto.so.3
No symbol table info available.
#5  0x28478688 in ASN1_item_ex_new () from /usr/lib/libcrypto.so.3
No symbol table info available.
#6  0x284784cf in ASN1_item_ex_new () from /usr/lib/libcrypto.so.3
No symbol table info available.
#7  0x28474361 in ASN1_item_ex_d2i () from /usr/lib/libcrypto.so.3
No symbol table info available.
#8  0x28473e12 in ASN1_item_d2i () from /usr/lib/libcrypto.so.3
No symbol table info available.
#9  0x2846c7ab in d2i_RSAPublicKey () from /usr/lib/libcrypto.so.3
No symbol table info available.
#10 0x28467bfe in d2i_PublicKey () from /usr/lib/libcrypto.so.3
No symbol table info available.
#11 0x284666be in X509_PUBKEY_get () from /usr/lib/libcrypto.so.3
No symbol table info available.
#12 0x284656e9 in X509_get_pubkey () from /usr/lib/libcrypto.so.3
No symbol table info available.
#13 0x28380183 in ssl_util_algotypeof (pCert=0x830b200, pKey=0x0) at 
ssl_util.c:144
        t = 0
        pFreeKey = (struct evp_pkey_st *) 0x0
#14 0x28374e41 in ssl_pphrase_Handle (s=0x80bbeb8, p=0x8146018) at 
ssl_engine_pphrase.c:216
        mc = (struct {...} *) 0x80b8320
        sc = (struct SSLSrvConfigRec *) 0x8299378
        pServ = (struct server_rec *) 0x81ada90
        cpVHostID = 0x81470c0 "support.parodius.com:443"
        szPath = "/conf/ME/certificates/support.parodius.com.crt\000ions\n\000
\001\000\000 \211)\b\200\211)\b(ÿ¿\000\000\000\000`.)\b\000-conference/x-
cooltalk\t\tice\000\000ltimedia\000\000\000ml\000\000eb\000\000ge+xml\000\000 
dmg\000\000.\000\000media type\000\000\000\000\211\000\000\000L\001\000\000 \002
\000\000\024\001\000\000\203\001\000\000N\000\000\000\b\000\000\000 \000\000
\000\202\000\000\000\207\000\000\000\020\000\000\000"...
        pPrivateKey = (struct evp_pkey_st *) 0x65747962
        asn1 = (struct {...} *) 0x20383220
        ucp = (unsigned char *) 0x73656b61 <Address 0x73656b61 out of bounds>
        length = 1948254218
        pX509Cert = (struct x509_st *) 0x830b200
        bReadable = 1866670132
        aPassPhrase = (struct apr_array_header_t *) 0x81470a0
        nPassPhrase = 0
        nPassPhraseCur = 1769236846
        cpPassPhraseCur = 0x49202d20 <Address 0x49202d20 out of bounds>
        nPassPhraseRetry = 925773856
        nPassPhraseDialog = 0
        nPassPhraseDialogCur = 1919243808
        bPassPhraseDialogOnce = 975206242
        cpp = (char **) 0x5f646f6d
        i = 0
        j = 0
        algoCert = 0
        algoKey = 0
        at = 842021424
        an = 0x303a3030 <Address 0x303a3030 out of bounds>
        cp = 0x20373020 <Address 0x20373020 out of bounds>
        pkey_mtime = 0
        isterm = 1
        rv = 0
#15 0x2836bbe1 in ssl_init_Module (p=0x80ba018, plog=0x80e8018, 
ptemp=0x8146018, base_server=0x80bbeb8) at ssl_engine_init.c:261
        mc = (struct {...} *) 0x80b8320
        sc = (struct SSLSrvConfigRec *) 0x8152f68
        s = (struct server_rec *) 0x0
#16 0x807602d in ap_run_post_config (pconf=0x80ba018, plog=0x80e8018, 
ptemp=0x8146018, s=0x80bbeb8) at config.c:93
        pHook = (struct ap_LINK_post_config_t *) 0x829a480
        n = 9
        rv = 0
#17 0x805f95f in main (argc=1, argv=0xbfbffc08) at main.c:706
        c = 0 '\000'
        configtestonly = 0
        confname = 0x8096599 "etc/apache22/httpd.conf"
        def_server_root = 0x80965b1 "/usr/local"
        temp_error_log = 0x0
        error = 0x0
        process = (struct process_rec *) 0x80b8098
        server_conf = (struct server_rec *) 0x80bbeb8
        pglobal = (struct apr_pool_t *) 0x80b8018
        pconf = (struct apr_pool_t *) 0x80ba018
        plog = (struct apr_pool_t *) 0x80e8018
        ptemp = (struct apr_pool_t *) 0x8146018
        pcommands = (struct apr_pool_t *) 0x80bc018
        opt = (struct apr_getopt_t *) 0x80bc0b0
        rv = 0
        mod = (struct module_struct **) 0x80a367c
        optarg = 0xbfbffbac ""
        signal_server = (int (*)(int *, struct apr_pool_t *)) 0

There was mention of this problem (or similar) on freebsd-ports
a few weeks ago, and the claim was that php5-openssl was causing
the problem.  This doesn't seem to be the case -- we build PHP as
a CGI, and we _do not_ use php5-openssl:

apache-2.2.2        Version 2.2 of Apache web server with prefork MPM.
cgiwrap-3.9_3       Securely execute Web CGI scripts
php5-5.1.4          PHP Scripting Language (Apache Module and CLI)
php5-gd-5.1.4       The gd shared extension for php
php5-iconv-5.1.4    The iconv shared extension for php
php5-mbstring-5.1.4 The mbstring shared extension for php
php5-mysql-5.1.4    The mysql shared extension for php
php5-pcre-5.1.4     The pcre shared extension for php
php5-session-5.1.4  The session shared extension for php
php5-sqlite-5.1.4   The sqlite shared extension for php
php5-xml-5.1.4      The xml shared extension for php
php5-zlib-5.1.4     The zlib shared extension for php
suphp-0.5.2_2       Securely execute PHP scripts

I can provide the coredump if need be, although I'm not just going to toss it 
out to anyone who asks for it, since it's a setuid 0 process which sig10'd and 
the core contains some sensitive information.

I say this is "semi"-reproducable because this is the 2nd or 3rd time I've seen 
it happen.  I can't get it to happen every time/day.

I'm left wondering if the fact that I'm sending SIGUSR1 to Apache -- twice very 
quickly -- due to the log rotation stuff is what's causing the problem.

Let me know if you have some ideas where I should look, or additional variables 
I should print out via `p' that'll help in the debugging process.  If you're 
*absolutely sure* it's a FreeBSD problem, then I'll take it up on the FreeBSD 
crypto/secure list.
Comment 1 Joe Orton 2006-06-19 13:53:34 UTC 
Segfaults at restart can happen because of global state abuse in OpenSSL.

Is your httpd binary linked against both libssl and libcrypto?  You are not
linking php into the httpd process at all, that's correct?
Comment 2 Jeremy Chadwick 2006-06-19 15:10:06 UTC 
(In reply to comment #1)
> Segfaults at restart can happen because of global state abuse in OpenSSL.
> Is your httpd binary linked against both libssl and libcrypto?  You are not
> linking php into the httpd process at all, that's correct?

I think I may have figured out what's happening, although it's something that 
*should* be reproducable.

Sifting through my logs, I found a series of strange HTTPS requests coming from 
what Apache believes is the same IP as the SSL-based vhost itself (FYI, I run 
NOTHING that can cause this to happen, so it's very strange indeed).  The 
timestamps of the requests match up with when I rotate my logs (more on that in 
a moment).  Be sure to note the HTTP response, and the actual HTTP fetch itself 
(lack-of HTTP/1.0 or HTTP/1.1 for example):

From the error log:
[Mon Jun 19 00:00:01 2006] [notice] Graceful restart requested, doing restart

From the access log:
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:01 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"
support.parodius.com 64.62.145.231 - - [19/Jun/2006:00:00:02 -0700] "GET /" 400 
1018 "-" "-"

I still can't explain the above.  It looks suspicious, and to be honest it 
looks like some sort-of weird bug in Apache (?!).  I assure you -- there is 
NOTHING running at that time which queries https://support.parodius.com/.

It's been worrying me that sending two SIGUSR1s to httpd in very short 
succession might cause the problem (look closely at newsyslog.conf).  However, 
my Apache logs only show one SIGUSR1 being received by Apache (no idea if 
that's true or not, I'd have to truss or ktrace the process to see).

So I've since changed my newsyslog to do the following:

/var/log/httpd-*.log                    640  13    *    @T00  
GB /var/run/httpd.pid 30

Which is to send one single SIGUSR1 to Apache then rotate the logs.

Now, about which libraries are linked in -- yes, that is correct.  PHP is NOT 
the problem here, it's run purely as a CGI.  We do use the SUPHP module, but it 
acts basically as suexec (calling PHP as a CGI).

$ ldd /usr/local/sbin/httpd
/usr/local/sbin/httpd:
        libm.so.2 => /usr/lib/libm.so.2 (0x280c1000)
        libaprutil-1.so.2 => /usr/local/lib/libaprutil-1.so.2 (0x280dc000)
        libexpat.so.6 => /usr/local/lib/libexpat.so.6 (0x280f8000)
        libiconv.so.3 => /usr/local/lib/libiconv.so.3 (0x28115000)
        libapr-1.so.2 => /usr/local/lib/libapr-1.so.2 (0x28202000)
        libcrypt.so.2 => /usr/lib/libcrypt.so.2 (0x2822e000)
        libc.so.4 => /usr/lib/libc.so.4 (0x28247000)

And just for details, loaded modules we have:

LoadModule authn_file_module libexec/apache22/mod_authn_file.so
LoadModule authn_dbm_module libexec/apache22/mod_authn_dbm.so
LoadModule authn_anon_module libexec/apache22/mod_authn_anon.so
LoadModule authn_default_module libexec/apache22/mod_authn_default.so
LoadModule authz_host_module libexec/apache22/mod_authz_host.so
LoadModule authz_groupfile_module libexec/apache22/mod_authz_groupfile.so
LoadModule authz_user_module libexec/apache22/mod_authz_user.so
LoadModule authz_dbm_module libexec/apache22/mod_authz_dbm.so
LoadModule authz_owner_module libexec/apache22/mod_authz_owner.so
LoadModule authz_default_module libexec/apache22/mod_authz_default.so
LoadModule auth_basic_module libexec/apache22/mod_auth_basic.so
#LoadModule auth_digest_module libexec/apache22/mod_auth_digest.so
#LoadModule file_cache_module libexec/apache22/mod_file_cache.so
#LoadModule cache_module libexec/apache22/mod_cache.so
#LoadModule disk_cache_module libexec/apache22/mod_disk_cache.so
LoadModule include_module libexec/apache22/mod_include.so
LoadModule filter_module libexec/apache22/mod_filter.so
LoadModule charset_lite_module libexec/apache22/mod_charset_lite.so
LoadModule deflate_module libexec/apache22/mod_deflate.so
LoadModule log_config_module libexec/apache22/mod_log_config.so
LoadModule logio_module libexec/apache22/mod_logio.so
LoadModule env_module libexec/apache22/mod_env.so
LoadModule mime_magic_module libexec/apache22/mod_mime_magic.so
#LoadModule cern_meta_module libexec/apache22/mod_cern_meta.so
LoadModule expires_module libexec/apache22/mod_expires.so
LoadModule headers_module libexec/apache22/mod_headers.so
LoadModule usertrack_module libexec/apache22/mod_usertrack.so
LoadModule unique_id_module libexec/apache22/mod_unique_id.so
LoadModule setenvif_module libexec/apache22/mod_setenvif.so
LoadModule version_module libexec/apache22/mod_version.so
LoadModule ssl_module libexec/apache22/mod_ssl.so
LoadModule mime_module libexec/apache22/mod_mime.so
#LoadModule dav_module libexec/apache22/mod_dav.so
#LoadModule status_module libexec/apache22/mod_status.so
LoadModule autoindex_module libexec/apache22/mod_autoindex.so
#LoadModule asis_module libexec/apache22/mod_asis.so
#LoadModule info_module libexec/apache22/mod_info.so
LoadModule cgi_module libexec/apache22/mod_cgi.so
#LoadModule dav_fs_module libexec/apache22/mod_dav_fs.so
LoadModule vhost_alias_module libexec/apache22/mod_vhost_alias.so
LoadModule negotiation_module libexec/apache22/mod_negotiation.so
LoadModule dir_module libexec/apache22/mod_dir.so
#LoadModule imagemap_module libexec/apache22/mod_imagemap.so
LoadModule actions_module libexec/apache22/mod_actions.so
#LoadModule speling_module libexec/apache22/mod_speling.so
LoadModule userdir_module libexec/apache22/mod_userdir.so
LoadModule alias_module libexec/apache22/mod_alias.so
LoadModule rewrite_module libexec/apache22/mod_rewrite.so
LoadModule suphp_module       libexec/apache22/mod_suphp.so
LoadModule bw_module          libexec/apache22/mod_bw.so

We also use mmap and sendfile:

EnableMMAP on
EnableSendfile on
Comment 3 Joe Orton 2006-06-21 12:08:11 UTC 
The dummy requests are made by httpd to wake up all the children.  It may help
here to link httpd itself against both -lssl and -lcrypto; can you try adding:

$(SSL_LIBS) 

to the end of the AP_LIBS = definition in build/config_vars.mk; then delete
httpd and rebuild.
Comment 4 sheshka.a 2007-08-29 02:14:02 UTC 
I have similar issue on Debian box:
xx.yy.zz.cc - - [29/Aug/2007:12:00:17 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:18 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:19 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:20 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:22 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:23 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:25 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:27 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:28 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:33 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:36 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:37 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:40 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:48 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:49 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:50 +0300] "GET /" 400 452 "-" "-"
xx.yy.zz.cc - - [29/Aug/2007:12:00:51 +0300] "GET /" 400 452 "-" "-"

My config:
ServerRoot "/usr"
PidFile /var/run/httpd.pid
Timeout 300
KeepAlive off
MinSpareServers 1
MaxSpareServers 1
StartServers 1
MaxClients 256
ServerLimit 555
MaxRequestsPerChild 1111
RLimitCPU 120 180
RLimitMEM 64000000 96000000
Listen 80
LoadModule auth_basic_module /usr/lib/apache2/modules/mod_auth_basic.so
LoadModule auth_digest_module /usr/lib/apache2/modules/mod_auth_digest.so
LoadModule authn_alias_module /usr/lib/apache2/modules/mod_authn_alias.so
LoadModule authn_anon_module /usr/lib/apache2/modules/mod_authn_anon.so
LoadModule authn_dbd_module /usr/lib/apache2/modules/mod_authn_dbd.so
LoadModule authn_dbm_module /usr/lib/apache2/modules/mod_authn_dbm.so
LoadModule authn_default_module /usr/lib/apache2/modules/mod_authn_default.so
LoadModule authn_file_module /usr/lib/apache2/modules/mod_authn_file.so
LoadModule authz_dbm_module /usr/lib/apache2/modules/mod_authz_dbm.so
LoadModule authz_default_module /usr/lib/apache2/modules/mod_authz_default.so
LoadModule authz_groupfile_module /usr/lib/apache2/modules/mod_authz_groupfile.so
LoadModule authz_host_module /usr/lib/apache2/modules/mod_authz_host.so
LoadModule authz_owner_module /usr/lib/apache2/modules/mod_authz_owner.so
LoadModule authz_user_module /usr/lib/apache2/modules/mod_authz_user.so
LoadModule actions_module /usr/lib/apache2/modules/mod_actions.so
LoadModule asis_module /usr/lib/apache2/modules/mod_asis.so
LoadModule cache_module /usr/lib/apache2/modules/mod_cache.so
LoadModule cern_meta_module /usr/lib/apache2/modules/mod_cern_meta.so
LoadModule cgid_module /usr/lib/apache2/modules/mod_cgid.so
LoadModule cgi_module /usr/lib/apache2/modules/mod_cgi.so
LoadModule deflate_module /usr/lib/apache2/modules/mod_deflate.so
LoadModule disk_cache_module /usr/lib/apache2/modules/mod_disk_cache.so
LoadModule expires_module /usr/lib/apache2/modules/mod_expires.so
LoadModule ext_filter_module /usr/lib/apache2/modules/mod_ext_filter.so
LoadModule file_cache_module /usr/lib/apache2/modules/mod_file_cache.so
LoadModule headers_module /usr/lib/apache2/modules/mod_headers.so
LoadModule include_module /usr/lib/apache2/modules/mod_include.so
LoadModule info_module /usr/lib/apache2/modules/mod_info.so
LoadModule ldap_module /usr/lib/apache2/modules/mod_ldap.so
LoadModule mem_cache_module /usr/lib/apache2/modules/mod_mem_cache.so
LoadModule mime_magic_module /usr/lib/apache2/modules/mod_mime_magic.so
LoadModule proxy_module /usr/lib/apache2/modules/mod_proxy.so
LoadModule proxy_http_module /usr/lib/apache2/modules/mod_proxy_http.so
LoadModule rewrite_module /usr/lib/apache2/modules/mod_rewrite.so
LoadModule speling_module /usr/lib/apache2/modules/mod_speling.so
LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so
LoadModule suexec_module /usr/lib/apache2/modules/mod_suexec.so
LoadModule unique_id_module /usr/lib/apache2/modules/mod_unique_id.so
LoadModule dir_module /usr/lib/apache2/modules/mod_dir.so
LoadModule alias_module /usr/lib/apache2/modules/mod_alias.so
LoadModule mime_module /usr/lib/apache2/modules/mod_mime.so
LoadModule userdir_module /usr/lib/apache2/modules/mod_userdir.so
LoadModule usertrack_module /usr/lib/apache2/modules/mod_usertrack.so
LoadModule vhost_alias_module /usr/lib/apache2/modules/mod_vhost_alias.so
LoadModule status_module /usr/lib/apache2/modules/mod_status.so
LoadModule env_module /usr/lib/apache2/modules/mod_env.so
LoadModule setenvif_module /usr/lib/apache2/modules/mod_setenvif.so
LoadModule autoindex_module /usr/lib/apache2/modules/mod_autoindex.so
LoadModule negotiation_module /usr/lib/apache2/modules/mod_negotiation.so
LoadModule suphp_module /usr/lib/apache2/modules/mod_suphp.so
LoadModule jk_module /usr/lib/apache2/modules/mod_jk.so
User www-data
Group www-data

Software versions:
ii  apache2                         2.2.4-3                 Next generation,
scalable, extendable web se
ii  apache2-mpm-prefork             2.2.4-3                 Traditional model
for Apache HTTPD
ii  apache2-utils                   2.2.4-3                 utility programs for
webservers
ii  apache2.2-common                2.2.4-3                 Next generation,
scalable, extendable web se
ii  libapache-mod-php5              5.2.0-8+etch1           server-side,
HTML-embedded scripting languag
ii  libapache2-mod-jk               1:1.2.18-3              Apache 2 connector
for the Tomcat Java servl
ii  libapache2-mod-suphp            0.6.2-1                 Apache2 module to
run php scripts with the o
Comment 5 Philp M. Gollucci 2009-01-18 16:19:13 UTC 
CC myself on FreeBSD related bugs
Comment 6 Mina Galić 2010-11-04 13:24:53 UTC 
This bug has been for 5 years in NEEDINFO, I don't think it is reproducable or relevant.