Slashdot Mirror

← Back to Stories (view on slashdot.org)

Failed Avionics a Possible Cause of BA038 Crash

Posted by Soulskill on from the we-will-be-landing-shortly dept.

Muhammar writes "As you may have heard by now, both engines of the Boeing 777 aircraft flight BA038 suddenly cut off without warning at very low altitude and low speed during autopilot-assisted landing at Heathrow. A prompt reaction of the pilots prevented the stall and saved all lives aboard. The crash landing short of the runway tore off the landing gear on impact, and the fuselage plowed a long, deep gouge in the grass. With the investigation ongoing, the available information points to an electronic control problem as the most likely cause of the sudden engine power loss."

20 of 369 comments (clear)

  1. Errrrr.. by Deekin_Scalesinger · · Score: 5, Insightful

    A bit of FUD here I think - unless I read TFA wrong, the entire thing is under investigation and no one is saying anything for at least a month. The autopilot apparently sensed the need for more thrust and warned the pilots of this. It might be premature to say that a software problem is the likely cause of failure...

    --
    "As the intrepid kobold companion continues his journey, he begins to wonder... if priests raises dead, why anybody die?
    1. Re:Errrrr.. by einhverfr · · Score: 4, Insightful

      Not so sure.

      I read a number of articles on it and:

      1) Avionics resulted in a near miss relating to a 777 a few months ago operated by Malaysian Airlines. The problem was a combination of a software bug and a dead sensor (i.e. the software didn't properly handle sensor errors and a sensor went dead).
      2) Despite this problem, the 777 still has an impressive safety record. Only one crash in the history of operating that aircraft and that didn't result in fatalities?

      In a plain like the 777 basically, you have three possibilities: human error, electronics failure, or mechanical failures. I think this case seems unlikely to be the result of other human or mechanical failures, so we are left with electronics issues and the primary suspect.

      I am guessing that the real lesson here is that nothing is infallible, but that the 777 is pretty-darn good.

      My suspicion is that we will eventually find that the 777 needs regular maintenance to portions of it which have not received as much attention in the past. It could be a similar issue to the MA failure-- a dead sensor sending information the software was not prepared to handle, it could be an electrical short circuit (for example, caused by water corrosian or even condensation) as we saw recently with the ISS. The point is that only now, thirteen years after the planes entered operation, we are running into these problems. I don't think that software alone could have caused the problem. More likely it is a combination ofhardware failure triggering bugs in software.

      --

      LedgerSMB: Open source Accounting/ERP
    2. Re:Errrrr.. by SL+Baur · · Score: 4, Insightful

      I am guessing that the real lesson here is that nothing is infallible, but that the 777 is pretty-darn good. That's what I read out of it too. The track record remains and speaks for itself - those are damn good planes.

      They experienced a catastrophic failure losing both engines at low altitude where the plane has all the flight worthiness of a brick and nobody died.
  2. No, not the Avionics... by bradgoodman · · Score: 5, Insightful
    No - I don't think so. The autothrusters responded properly, but they literally just move the throttle levers, to which the engines didn't respond.

    The pilots then manually increased throttle - to no avail.

    For both engines to malfunction like this at the same time greatly seems to point to a fuel delivery problem.

    This does not necessarily mean "running out of gas" - as a plane like this has multiple tanks, valves and pumps, all of which can be configured multiple different ways - which change during the flight.

    A simplistic example: they could have been running both engines off one tank - which went dry - though another was full - or both engines were being fed from a common fuel pump which failed, etc. These things *shouldn't* happen - but the investigation will tell...

    1. Re:No, not the Avionics... by rsmoody · · Score: 1, Insightful

      The 777 is fly by wire. The commands are sent from the throttle levers in the cockpit, to the computer, the computer sends the commands to the engines. This is not the first example I am aware of were software caused an incident. About 2 years ago a Challenger Jet was about to rotate on takeoff at our local airport, and the computer refused to allow the aircraft to rotate. The pilots immediately aborted, but they still ran off the runway by about 20 feet. No injuries, no fire, just damage to the aircraft. This was not the first case of this model having this issue. Again, it was fly by wire that was at the heart of the issue. I think we will find that there was a coding error that caused the engines not to respond to controls with this one.

      --
      45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2
    2. Re:No, not the Avionics... by chuckymonkey · · Score: 3, Insightful

      These things *shouldn't* happen - but the investigation will tell...


      Exactly why speculation as to the cause gets us nowhere. Pointing fingers and throwing blame about serves nothing, just like the guy above saying something about Iranians. We really should have something similar to a Godwin for Terrorist/Bush/Iranian bullshit that people post.

      --
      "Some books contain the machinery required to create and sustain universes."-Tycho
    3. Re:No, not the Avionics... by DaveAtFraud · · Score: 4, Insightful

      No - I don't think so. The autothrusters responded properly, but they literally just move the throttle levers, to which the engines didn't respond.

      Just because the indicators in the cockpit show that the autothrusters were to provide more power doesn't mean the signal gets to the engines. There is a lot of wiring and other systems between the cockpit and the engine. On a "fly-by-wire" plane like the 777, even moving the throttle levers just sends a signal to a system that eventually gets to the engines. Bottom line is there are lots of lower level avionics systems that could have failed and the pilots would only see that the autothruster was supposed to provide more power and didn't.

      The question is, which on the various boxes along the way had a BSOD?

      Cheers,
      Dave

      --
      They that can give up essential liberty to obtain a little temporary safety deserve neither safety nor liberty.
      Ben
    4. Re:No, not the Avionics... by timthorn · · Score: 5, Insightful

      No, this happened at the worst possible point. Over the middle of the ocean the aircraft will have been at perhaps 38000 feet and in a flight configuration, giving time to attempt various restart procedures, declare an emergency and glide to an airfield - a transatlantic flight is rarely out of gliding distance to a landing strip, and a flight from China likewise.

    5. Re:No, not the Avionics... by Hognoxious · · Score: 3, Insightful

      a transatlantic flight is rarely out of gliding distance to a landing strip
      Assuming it's flying at 40 thousand feet and can do 30 feet forward for every foot of drop (probably a high estimate; top sailplanes get more but they're designed for it) that means it can never be more than about a million feet from a fairly long and smooth runway. Sounds a lot but that's barely 200 miles.
      --
      Confucius say, "Find worm in apple - bad. Find half a worm - worse."
  3. Patience by Linker3000 · · Score: 5, Insightful

    Let's just wait for the official forensics rather than patched together rumours shall we?

    --
    AT&ROFLMAO
    1. Re:Patience by iknownuttin · · Score: 2, Insightful
      Seriously though, this is the place to come for some relatively informed speculation...

      Seriously though, this is the place to come for some two-bit speculation...

      Had to fix that for you. Go back and read any /. article about NASA problems and just see the posts from folks who "know better" than the rocket scientists.

      I think I had too much coffee this morning. I'm feeling a bit cranky.

      --
      I prefer Flambe as apposed flamebait.
    2. Re:Patience by Linker3000 · · Score: 2, Insightful

      Oh, I am well aware of the /. crowd's ability to generate 'fact' - it's even more impressive than Leeloo's reconstruction.

      --
      AT&ROFLMAO
  4. Re:Are the pilots heros? by bradgoodman · · Score: 5, Insightful

    The word "hero" is thrown around a lot these days...

    I believe what they meant, was that the pilots realized that things were going wrong, and the "normal" reaction would be to add thrust. When they realized that they couldn't add thrust, that this would result in loosing airspeed, entering a stall, and crashing

    So they realized that an alternative was to lower their angle-of-attack, preventing the stall, and maintaining a bit of airspeed. This would have the unfortunate side affect of landing well-short of the runway (and perhaps airport) and destroying the aircraft - but given the information available - was a bad - but the best alternative

    So they implicitly decided the best course of action was to glide the airplane and ditch it in a field - not a decision that would have exactly won them any praise had they read the situation wrong - but it saved everyone

  5. Re:Are the pilots heros? by u38cg · · Score: 4, Insightful

    To my mind, if you manage to get 300 tonnes of falling metal out of the sky and on the deck with nothing worse than a broken leg, you've done something right.

    --
    [FUCK BETA]
  6. Re:Possible autothrottle problem by BlueStrat · · Score: 5, Insightful

    Not a commercial aircraft airframe and powerplant mechanic, but I was a senior avionics technician for many years dealing with corporate and private jets.

    What I've read is that the pilots observed a relatively gradual loss of power symmetrically on both engines.

    Interesting. Do you have a link to the source for that? Not that I doubt you, just curious to parse it myself.

    This tells me that I can rule out engine problems with FADEC and fuel.

    FADEC, possibly, but fuel? It's quite possible there was either water or crud in the fuel, especially since the aircraft almost certainly took on fuel in China, and China seems to have had problems of late with products being adulterated in some form. The crud could cause blockages in the filters from the tank(s). The water would cause an increasingly-diluted fuel mixture to enter the engines as the level dropped which might also cause the gradual loss of power.

    The two most-likely culprits I would examine first are the discrete devices at either end of the control path that send the data and receive it at the other end, and the cables and connectors used to transmit the data.

    The next point I'd check would be the power supply that powers the electrical actuators that physically move the actual throttles in each engine. This supply would be separate from the power used for the electronics, as it would be a relatively high-current source. This might also be caused by cabling/connector problems.

    Aircraft tend to have many problems with cabling due to high vibration and multiple pinch-points and stress and vibration/abrasion at support points, as well as contact problems at connectors.

    Another very major problem is human error. In many cases the turn-to-lock type connectors are in very tight spaces, sometimes so much so that it may only be visible by a small mirror and flashlight held by the tech while he may be laying on his back or nearly standing on his head. I had a whole set of strange-looking pliers of different lengths and weird angles with curved padded jaws for just this purpose in my tool box, along with small hand-held extend-able flexible-tubing-mounted inspection mirrors and flashlights with the head on flexible tubing as well.

    It can be very hard to tell, given the above circumstances, if the locking sleeve on these aircraft instrumentation connectors had been twisted far enough to complete the lock. It doesn't take much imagination to see what could happen given time, vibration, and G-forces.

    Of course, these are just my rough guesses, and I don't have enough information to really make any informed statements.

    Cheers!

    Strat

    --
    Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  7. Good case to examine by jhines · · Score: 4, Insightful

    Given that the plane is heavily instrumented, available, and didn't burn, this should be a simpler case to examine. Hopefully, a lot can be learned. At least more than if it crashed and burned in a jungle, or into the ocean.

  8. Pointless speculation by we who know nothing by caseih · · Score: 5, Insightful
    A comment on airliners.net's forums is very appropriate for us slashdotters I think:

    A BA 772 landed short of the runway. Initially, speculation was entirely wild, ranging from random double engine failure to fuel contamination to one engine being actually working. Some witnesses said the plane came in high and fast, others said low and slow, others mixed the two together; all agree it was nose-high. A few helpful posters who actually knew something contributed. Some posters asked why the tires were brown...after the plane had skidded through a wet, grassy area on collapsed landing gear. A few posters got into pedantic discussions on various features of the 772 or its operational history as compared to the 340. Others took great pains to demonstrate to the world their lack of basic knowledge of unpowered flight. Few seemed familiar with the notion that fan blades windmill even when no power is applied to the engine. Most all were engaged in a game of nerdy one-upmanship in which they vigorously tried to validate their lofty views of themselves based on their aeronautical knowledge. In sum, we know about as much now as we did when the plane went down: the plane turned onto final, engines did not respond to power inputs, plane landed short of runway, slides deployed, people all survived, plane almost certainly a W/O. Shockingly, neither BA nor Boeing has decided to keep the 15-year-old speculation artists abreast of the situation.
  9. Re:Are the pilots heros? by Deadstick · · Score: 4, Insightful
    "Good airmanship" would be more apropos. They recognized the problem, in time to take over from the autopilot, and had the skill to pull off a deadstick landing with a survivable impact.

    In principle, the airplane could have been landed on the runway without damage, if the right variables had come together -- but low and slow, in a big heavy airplane, with full flaps and no power, you're pretty well boxed in. I don't think they could have done better.

    rj

  10. Re:I had a suspicion by Anonymous Coward · · Score: 2, Insightful

    Posting anon for obvious reasons.

    I work in the avionics industry and this was exactly my thought as well. These systems are becoming much more complex than you would expect embedded software to be. Several address spaces and over a dozen threads is fairly normal with most newer systems.

    Typically the safety critical industry likes to tout itself as being better designed than other software because it conforms to various standards, particularly do178b. At their core, these standards basically say you need to have processes that everyone understands in place when you design your software and you need have documentation that shows you tested all the different elements of functionality. The testing may be fairly rigorous depending on who is doing it, but at the end of the day they arent doing much that microsoft/oracle/your favorite well known software vendor doesnt do. (although I am sure that many here beleive that ms doesnt test its software) :)

  11. Re:Software? by PingXao · · Score: 2, Insightful

    That sounds really dumb. Tools that can verify that software matches the specifications 100% in every case under every condition? For anything but the most rudimentary code I seriously doubt that. There was a relatively recent incident where a 777 gave warnings that it was going too fast and too slow, both at the same time. Attributed IIRC to a failed sensor and software not programmed to handle the error correctly. That blows the 100% software verification test suite right out of the water. If they really adopted that methodology they probably did it for economic reasons rather than safety.

    "This is your automated pilot speaking. Sit back and enjoy your flight with us this afternoon on the first completely automatic airliner. Nothing can go wrong... go wrong... go wrong... go wrong."