Elon Musk: Faulty Strut May Have Led To Falcon 9 Launch Failure

garyisabusyguy writes: This Forbes article provides the best analysis of the loss of the last Falcon 9 mission based on information released by Elon Musk to reporters. Highlights include:

• 1. Sound triangulation led them to identify a strut holding helium tank as root cause where the falling helium tank pinched a line causing overpressure in the LOX tank.
• 2. The failure occurred at 2,000 pounds of force, and the struts were rated at 10,000 pounds of force. They initially dismissed this as a cause until sounds triangulation pointed back to the strut
• 3. Further testing of struts in stock found one that failed at 2,000 pounds of force, with further analysis identifying poor grain structure in the metal, which caused weakness
• 4. It will be months before the next launch while SpaceX goes over procurement and QA processes all struts and bolts, and re-assesses any "near misses" with Air Force and NASA
• 5. Next launch will include failure mode software, which will allow recovery of the Dragon module during loss of the launch vehicle since they determined that it could have saved the Dragon module in this lost mission

.

Holy Jebus

Now THAT is how you summarize.

Re:Holy Jebus

[lgw]

Now THAT is how you summarize.

Well, missing from TFS was what SpaceX is doing to prevent this specific problem in the future:

To avoid this type of accident occurring in the future, the company will now individually test every strut it installs on a Falcon 9, regardless of its material specification. It's also considering a different material for its bolts, as the bolthole was the likely site of failure, and will likely switch strut suppliers.

The first thing any engineer (in any discipline) needs to learn when starting a real job is "the vendor is a lying bastard". I think it will work out substantially cheaper in the long run to test every strut rather than to go crazy with the material specification. Accept the universal truth that the vendor is a lying bastard, test as needed, and get on with life. If SpaceX ever reaches their reusability goal, the cost of all the testing will be spread across many flights anyway.

Re:Holy Jebus

[garyisabusyguy]

Yeah, I tried to cover that under item 4 with "goes over procurement and QA processes all struts and bolts"

Admittedly not a "smoking gun" sort of statement, just *ahem* a summary

Re:Holy Jebus

[ArcadeMan]

Ah yes, the Gregory House/Fox Mulder method: everybody lies, trust no one.

Re:Holy Jebus

[Ichijo]

3. Further testing of struts in stock found one that failed at 2,000 pounds of force

I think it will work out substantially cheaper in the long run to test every strut rather than to go crazy with the material specification.

That reminds me of the joke about the boy scout who would test all his matches and save the ones that lit successfully.

Re:Holy Jebus

[Rei]

Elon is surely really fuming about this one, as I know from past interviews with him that he really doesn't like having to source hardware from outside suppliers. He has the old "robber baron" mindset of wanting to get the whole production chain start-to-finish in house, and it's one of the things that really frustrated him when he started Tesla: at the time of the last interview I read on the subject (something like 3 or 4 years ago), he had gotten SpaceX up to 80% in-house, but Tesla was only up to 20% in-house. Car manufacture has long been all about sourcing parts from a wide range of outside suppliers.

But even at 80% in-house at SpaceX, looks like that remaining 20% still bit them : Seriously, failing at 1/5th the rated failure value? The vendor might as well have given them a cardboard cutout with the word "strut" written on it in sharpie.

Re:Holy Jebus

[Rei]

Also, maybe it's just because I've never worked in that industry before, maybe it's common practice in rocketry, but is anyone else impressed with the use of sound triangulation to figure out which part broke? I've never heard of that being done before.

Sad that the Falcon Heavy won't be launched until next spring, I've been really looking forward to that. Oh well...

Re:Holy Jebus

[rmdingler]

Ahhhh, the unblemished record was an albatross about their neck, anyhow.

Couldn't last forever, like any proper winning streak, and often times more is learned from one's failures.

Carry on Elon, and may the odds be ever in your favor.

Re:Holy Jebus

[camperdave]

Also, maybe it's just because I've never worked in that industry before, maybe it's common practice in rocketry, but is anyone else impressed with the use of sound triangulation to figure out which part broke? I've never heard of that being done before.

*camperdave raises his hand.
I am impressed that they were able to do this. I imagine that this would be difficult under the best of circumstances, but inside a rocket during a launch? That's not the type of environment I would expect to hear anything apart from the roar of the engines. I'm picturing 3D renderings showing simulated sound waves, experts trying to line up similar sonic wave-fronts to compute timings, and lots of computer time.

Re:Holy Jebus

[Shinobi]

Using sound to probe structures, materials and devices is a pretty ancient technique, it's just advanced with the tools available. Stonemasons used to check blocks of stone to locate faults by tapping on them and listening for sounds that would indicate cracks or other faults. One of my grandfathers tried to teach me how to listen for potential rot zones in wooden walls when I was a kid also. Now, with modern tools, we can just do it much faster, and with more precision.

Re:Holy Jebus

[mi]

test every strut

That is, sort of, an argument for TCP. But UDP is often preferred nonetheless... And increasingly so even for the traditionally TCP-applications, such as file-transfers.

Re:Holy Jebus

[StuffMaster]

The fact that they triangulated a part failure *after* it exploded is what impresses me.

I knew rockets transmit a lot of data for failure analysis but not that!

Re:Holy Jebus

[Ol+Olsoc]

The first thing any engineer (in any discipline) needs to learn when starting a real job is "the vendor is a lying bastard". I think it will work out substantially cheaper in the long run to test every strut rather than to go crazy with the material specification.

Spacex, welcome to NASA's world.

I'm rooting for them for sure, but After learning the hard lessons, and the inevitable expenses to correct them, their costs will increase. dramatically.

Re:Holy Jebus

[Ol+Olsoc]

Ah yes, the Gregory House/Fox Mulder method: everybody lies, trust no one.

That's certainly a lot safer than the alternative.

Re:Holy Jebus

[Teancum]

It is one thing to use such techniques to test something in a quiet area like a testing chamber, and something completely different to use this technique not only in a rocket that is accelerating at 32 m/s^2 but also has a whole bunch of other noise going on from nine operating turbo pumps, the rocket engines themselves, and other things rattling around tied to that whole system. In addition, to be able to locate a cause while the whole rocket is undergoing massive unplanned disassembly (aka an explosion releasing as much energy as a small nuclear bomb). Also doing that remotely off of recordings made on less than ideal microphones sharing bandwidth with many other more critical data functions over 30 miles away from where you are at.

As something SpaceX can and perhaps should be doing as a part of their Q/A analysis, no doubt using some sort of sound probing to detect faults is going to be done. I just don't know if this has been done on something like a black box of an airliner to perform fault analysis post-mortem on a vehicle failure.

Re:Holy Jebus

[0123456]

I'm rooting for them for sure, but After learning the hard lessons, and the inevitable expenses to correct them, their costs will increase. dramatically.

Yeah, because verifying that subcontractors built components they way they should will totally add half a billion dollars to the cost of each launch.

Besides which, once they start reusing stages, they'll know they're good because they've already flown once.

Re:Holy Jebus

[fnj]

"The sourceforge.net website is temporarily in static offline mode. Only a very limited set of project pages are available until the main website returns to service."

Sound familiar, anybody?

Re:Holy Jebus

[Shinobi]

Such techniques are used in live environments today, such as factories, oil platforms etc. In fact, I'd be surprised if SpaceX DIDN'T have at least 6+ microphones or other vibration sensors relaying telemetry, and baselines from previous launches to compare with. With that baseline, you can tell if it happens to be a turbopump that malfunctions. Hell, if a strut or something would break in my brothers boat, we hear it immediately, because the overall vibration and thus overall boat noise will be altered.

Also, they clearly have decent bandwidth to the rocket during launch, given that they can have video feeds etc, and you can easily get multiple audio telemetry feeds to take less bandwidth than even a low-res video feed.

Re:Holy Jebus

[Ol+Olsoc]

I'm rooting for them for sure, but After learning the hard lessons, and the inevitable expenses to correct them, their costs will increase. dramatically.

Yeah, because verifying that subcontractors built components they way they should will totally add half a billion dollars to the cost of each launch.

Besides which, once they start reusing stages, they'll know they're good because they've already flown once.

Nw expand that to all the parts

. Which part is going to fail? It's not a trap per se, but rockets have not changed one fundamental aspect, and that is they are sticks with a controlled explosion/deflagration coming out one end, and they stress the bejabbers (technical term) out of every single part in them.

Light enough to fly, strong enough to withstand crushing forces. Barely compatible requirements.

Re:Holy Jebus

[FatdogHaiku]

Please, please tell me it was 3D printed so we can work that in somewhere...

Re: Holy Jebus

They could also send someone into a similar but unexploded stage with a wrench to wack on various suspect pieces, and see which one generates vibrations with the same phase as seen in the flight data. Real life is the highest fidelity 3D simulation!

Also, I'm guessing that accelerometers provided at least some of the data, since they can measure vibration and are perfectly reasonable sensors to have scattered throughout a rocket.

Re:Holy Jebus

[0123456]

Nw expand that to all the parts

They make most of the parts themselves, so presumably they're already doing at least random testing of those parts. Even if they did test them all, it won't add half a billion dollars to the cost of each launch, nor will they be testing many of them before reusing a stage which worked fine last time.

You have to try really, really, really hard to make your launcher anywhere near as expensive as SLS.

Re:Holy Jebus

[AaronW]

I have a friend who helped design the Tesla drive train. He said they do so much in house since they have a lot of problems with components from 3rd parties, especially China. Look at all the transmission failures the Roadster had until they did their own in-house design.

It also allows for them to make changes quickly. Apparently they make tweaks to the design of the car almost every week which would be impossible to do with a heavy reliance on 3rd parties for manufacturing.

Re:Holy Jebus

[bughunter]

"the vendor is a lying bastard"

As a former aerospace systems engineer (now RF systems engineer), I found that that is certainly how the US Government and their Prime Contractors treat their suppliers. Every process in place is there to make sure you're not lying about something, cutting a corner, or inflating expenses. And the depressing thing is that every one of them is there to prevent recurrence of a dishonesty that actually took place in the past.

So even if you are one of those vendors that acts in good faith, and believes that a quality product is the best advertising, and that if your project is paid for by tax money then you're ethically obligated to do the best job possible, you get treated exactly like the asshole who made the decision to make a few extra bucks profit by not properly verifying the workmanship on a major structural component for a vehicle that he knew would eventually be manned.

And as an engineer, I know that most engineers want to act in good faith. Some are inept or inexperienced but they still have good faith. The problem lies in management. Once you get the lawyers and bean counters involved is when asshole decisions like that get made.

Re:Holy Jebus

[recharged95]

Geez folks, it's a flying, semi-autonomous/autonomous vehicle..... even if it's 1960's tech:

test,test,test,test.

Simulation and spec reports can only get you so far.

Re:Holy Jebus

[Areyoukiddingme]

Nw expand that to all the parts

You mean expand it to the fraction of the 20% outsourced parts that weren't already being exhaustively tested? Most of those outsourced parts are electronic, because Elon Musk doesn't own a semiconductor factory (yet). All of those electronic parts are tested exhaustively and repeatedly, right up until the literal second of launch, as software verifies sanity in all systems. What's left are things like struts, that should be stupid-simple enough to be trustworthy. And apparently aren't.

So some fraction of a fraction of the parts will need newly exhaustive testing. Not free, but really, it's not that big of a bill.

Re:Holy Jebus

[lgw]

Fairy tales begin "once upon a time".

War stories begin "this shit really happened"

Specs begin "1.0".

Re:Holy Jebus

[thegarbz]

The first thing any engineer (in any discipline) needs to learn when starting a real job is "the vendor is a lying bastard".

Hardly. This points more to poor vendor selection and a crap procurement process. In many cases the costs of faults should be contractually passed back to the vendor. The end result is a more costly product but with higher quality as a result.

The problem is that salesmen are lying bastards. When you get the technical people on the phone (if you can get them) the complete and typically trustworthy story comes out.

Re:Holy Jebus

[lgw]

And as an engineer, I know that most engineers want to act in good faith. Some are inept or inexperienced but they still have good faith. The problem lies in management. Once you get the lawyers and bean counters involved is when asshole decisions like that get made.

Eventually, every young engineer realizes "wait, we're a vendor too", and his eyes are opened. It's a formative moment towards the end of his apprenticeship, no?

Re:Holy Jebus

[techno-vampire]

I don't know if the railroads still do this, but you used to see men walking down the length of a train tapping each wheel with a hammer and listening to the way they rang. They did this because if a wheel was going bad (i.e., cracking) they wouldn't sound right. It might have looked like busy-work, or featherbedding, but it prevented many train wrecks and saved countless lives.

Re:Holy Jebus

[AJWM]

And the depressing thing is that every one of them is there to prevent recurrence of a dishonesty that actually took place in the past.

And sometimes it's not even dishonesty, just stupidity. This was probably more true in the earlier days of aerospace. In a book about the design and construction of the Lunar Module (I think it's Chariots for Apollo, but could be wrong) there's a section on how many of the subcontractors had to be taught clean-room and quality techniques. There's one episode where one of the Grumman managers goes out to some paint pigment company who happened to get the contract for the silver-zinc LM batteries (because they had supplies of the right materials) and sees the batteries being assembled -- in a dirty shed by people who are smoking cigarettes while doing the assembly. (They threw out the entire batch, trained everyone how to do things the aerospace way, and set up a clean room, and AFAIK there was never a problem with the LM batteries.)

On the other hand the ladies sewing space suit pressure garments at the Playtex Girdle factory knew the astronauts' lives depended on what they were doing, and did it right the first time.

Re:Holy Jebus

[Shinobi]

Gah, thanks for reminding me... My father being a train buff, and his father working on the railroad for 45 years, I should have remembered to bring that up.

Re:Holy Jebus

[cyn1c77]

The first thing any engineer (in any discipline) needs to learn when starting a real job is "the vendor is a lying bastard". I think it will work out substantially cheaper in the long run to test every strut rather than to go crazy with the material specification. Accept the universal truth that the vendor is a lying bastard, test as needed, and get on with life. If SpaceX ever reaches their reusability goal, the cost of all the testing will be spread across many flights anyway.

The second thing any engineer needs to learn is cost-benefit analysis:

1. I always choose the lowest bidding vendor, and he is always a lying bastard who can't deliver on spec, on time, or on budget.
2. Testing every part or losing rockets costs a lot of money than I saved on the lowest bidder.
3. Maybe I should vet my bids more carefully with plant visits, spot checks, and intermittent testing. Then choose the best vendor and not be cheapest one.

This approach will end up saving you money with high-visibility, low-volume projects.

Re: Holy Jebus

[perryizgr8]

Real life is the highest fidelity 3D simulation!

I'm stealing this for my sig.

Re:Holy Jebus

[perryizgr8]

Sourceforge is blocked by chrome and ublock and everybody sane. Stop using it.

Re:Holy Jebus

[TWX]

You realize that your car has at least one knock sensor on the engine, right? After market retail for an OEM replacement is usually around $100. It is able to handle the noise off of the alternator and all of the rest of the electrical and electronics plus all of the fluids, rotational mass, bearings, and anything else that is expected to make noise, can understand the difference between a combustion premature detonation and a rock bouncing off of the oil pan plus any other of a multitude of impacts noises, and probably costs the automaker just a few dollars to manufacture.

After reflecting on it I'm not exactly surprised. Their later independent confirmation of a not-yet-flown part's failure through destructive test helps reinforce the likelihood of this. I'm glad they found something, it would be nice if we had competitive space launches to make the costs come down.

Re:Holy Jebus

[TWX]

On this scale there's so much back-and-forth and so many quality engineers, supplier quality engineers, DCMA inspectors, QC technicians, and the like that I would be surprised if a design misinterpretation slipped through.

Re:Holy Jebus

[TWX]

m rooting for them for sure, but After learning the hard lessons, and the inevitable expenses to correct them, their costs will increase. dramatically.

I don't think that reuse rockets will be considered prime rockets. I expect they'll be used for lesser-importance launches if there's any real risk of a fault developing that couldn't be detected.

Re:Holy Jebus

[strikethree]

But even at 80% in-house at SpaceX, looks like that remaining 20% still bit them : Seriously, failing at 1/5th the rated failure value? The vendor might as well have given them a cardboard cutout with the word "strut" written on it in sharpie.

Indeed. I wonder if SpaceX can sue the supplier? I wonder what the contract terms were.

Re: Holy Jebus

[oobayly]

It sounds like it was a rebranded Kerlington Model Rockets and Paper Products Inc. strut.

"The EAS-4 Strut Connector (frequently referred as "space tape") is a part that allows linking two parts together..."

Re:Holy Jebus

[thinkwaitfast]

This is very common and what FFTs are used for. One hypothetical example would be to attach a few hundred chip sized 3-d accelerometers and send back the values of each. Here's an example, the ADXL335 Say you have 1000 of these distributed throughout the vehicle. A breaking bolt would cause a small shockwave that would easily be visible as a blip in the frequency spectrum. Each blip has a timestamp and known position, so you just triangulate back to the origin.

Re:Holy Jebus

[Dr_Barnowl]

And the most depressing thing about this?

It basically excludes new players from the market. Only the big firms have the resources to go through all that compliance paperwork. Which means the only people left are the lying, cheating, scum that caused the problem in the first place.

This has only fostered a risk-averse mentality that chokes every aspect of government and big business. No wonder it's the small firms that have the reputation for innovation - it's because they still have their innocence and aren't wasting 95% of their energy looking over their shoulder and checking up on things to cover their asses.

Re:Holy Jebus

[KGIII]

I thought it was a fine summary. I write diatribes and novellas. I do not submit to /. because of this. I am afraid that it just would not work.

Re: Holy Jebus

[KGIII]

Somehow, I suspect you are actually pretty good at debugging and troubleshooting.

Re:Holy Jebus

[KGIII]

A fairly recent show on one of the History/Discovery or some such channels was about trains. Oddly, the engineer on the show was from Maine and we have pretty much no trains here, comparatively speaking. Anyhow, I watched one of these shows online and have no idea what the title was. As he was from Maine, I went and searched for a few more episodes. In one of those episodes there was a person banging away at the wheels for just that reason. The show was fairly modern so I am assuming that they still do that. I do have a train engineer in the family but she went batshit crazy (she is an in-law) and I would ask her but she went crazy, learned to drive a train, and is now living somewhere that I do not know and I have no way to contact her. So, that is all the information I have... You can do with it as you wish.

Re:Holy Jebus

[KGIII]

Alternatively, you can pay attention when you install stuff and untick the box that adds on extra crap. You should be paying attention anyhow.

Re:Holy Jebus

[KGIII]

In a koan:

Eventually, every young engineer realizes "wait, we're a vendor too", and... the young engineer is enlightened.

Re:Holy Jebus

[CrimsonAvenger]

War stories begin "this shit really happened"

Actually, war stories begin "this is no shit. There I was..."

Re:Holy Jebus

[tomhath]

Besides which, once they start reusing stages, they'll know they're good because they've already flown once.

Know they're good? After all the heat and stress every part on that booster has endured you don't think there's a chance that it's degraded?

Re:Holy Jebus

[halltk1983]

That's, of course, why every strut they tested failed in exactly the same way, including all those on the successful launches as well, and not that they had to test an 'enormous' number of them to find one that failed in the same way. Or perhaps it was the other way around.

Re:Holy Jebus

That must not apply to shuttle launches, as the videos I saw on youtube shot in the cockpit at lauch looked awfully rough... The big "twang" of the stack when the SRB's fired and a LOT of shaking, like driving down a bumpy road...

Re:Holy Jebus

[LVSlushdat]

Damn... With todays trains, THAT would be a LONG walk, since most of the stack-trains you see on the class 1 railroads are a mile long (or more)... if they still do that, that is some seriously good exercise for the crew...

Re:Holy Jebus

Having not read TFA, take this with a grain of salt. But more than likely, they aren't using microphones, and it's not "sound" they are monitoring. I would bet they are using vibration transducers mounted in various places on the rocket. If so, it would be fairly easy to process the signals to triangulate the position of a certain sound (especially since they know the exact placement of the transducers).

Gotta run, need to troubleshoot a power failure on this pump off controller.

Re:Holy Jebus

[0123456]

Know they're good? After all the heat and stress every part on that booster has endured you don't think there's a chance that it's degraded?

Obviously. And eventually they'll blow up.

But they won't have parts that fail at 20% of their rated load, because they would already have failed. No-one's going to be taking them apart and testing every component before the next flight, only the ones that need testing and/or replacement.

Most likely, launch reliability will peak after several flights, because the rocket stage has proven itself and not degraded to the point where things are likely to fail from wear or use. Rather like pretty much anything else in the engineering world; most failures happen early or late in a device's life.

Re:Holy Jebus

[techno-vampire]

For trains like that, they probably have one man for each side. Not only that, one starts from the front and the other from the rear so that there's no confusion over which wheel they're hearing.

Re:Holy Jebus

[Koreantoast]

This is one of the reasons why government work is so expensive. Everything needs to be checked, verified, and certified, creating massive process intensive bureaucracies which increase the overhead costs of all projects.

Re:Holy Jebus

[Thelasko]

Most of those outsourced parts are electronic, because Elon Musk doesn't own a semiconductor factory (yet).

I doubt he owns his own bauxite mine or aluminum refinery either. The rabbit hole goes much deeper than just shaping raw materials. The quality of the material was the root cause in this case.

Re:Holy Jebus

[KGIII]

Have you not seen my posts before? That is *hardly* my life's story. No, that is a very small post for me. I typically write a novella about the most mundane of things. Your concern is not of any importance to me but it is cute that you think I care about your opinion. If I cared about opinions then I would certainly try to fit in.

Would you like a novella of your own to ignore? Long paragraphs and complex subjects that do not fit on a bumper sticker may be difficult so you may wish to ask your mother for some assistance. Some of the words may be difficult to understand, and my writing style is not the best, so you really may want a dictionary if you are going to attempt to parse the more difficult sections.

I will be more than happy to share a brief portion of my life for you. I will take the time out of my not-so-busy schedule and type you up a real novella so that you have something legitimate to whine about. I know, you got a trophy for reading last semester. You're special and a snowflake so parsing anything more difficult than a saying on a coffee cup is difficult for you. I understand that.

But no no no... You want a novella and something to complain about? A life story? Well... You're in luck. I am more than happy to give you something to whinge about. Why? Because I care. I care about the fact that you were unable to find anything legitimate to complain about and, instead, were reduced to complaining about something that has absolutely no bearing on your life. I care that you do not have something worthwhile in your life that you care about. It is unacceptable! I should have been more thorough and truly provided you with something to snivel about and I should have made certain to use only the most simplistic of words so as to not offend your delicate sensibilities.

Why? Because you are important.

Do you carry a box of tissues, for things other than masturbation cleanup, when you go out on the town in case somebody offends you? Does it bother you when people say things that are more significant than a grunt and a nod of affirmation? Those mean people and their complexities... There really ought to be a law, huh?

We do not need information, we can get by with just the facts. It is not important to see where the information comes from so that you can judge its merits. No, that is not important at all. We just accept the facts we like, discard the rest, and consider anything more complicated than a potato to beyond our ken. Never mind an interest in humanity, that is irrelevant and inconsequential.

But you, you little button nosed Anonymous Coward who lacks the social graces to sign their name to their trivial complaints, are special and we must (of course) accommodate your handicaps. I would have thought that my taxes going to pay for your "special helmet" would be enough but it seems I must ensure that I avoid anything complicated or with a background because of your inability to comprehend it or skip reading it. Your delicacy is unfortunate and I am sure that there will be a cure for you and your kind in the near future.

Now, here, you have a novella. It is not my life's story but it is still long enough for you to complain. Is there anything else I can do for you? Maybe you would like a glass of milk and someone to cut the crust off your bread? Maybe you need to rent a hooker for a few hours? I am here for you and only you, after all. It is imperative that I write only to suit your guidelines and to make sure you are not overly exerting yourself mentally or unhappy that you are unable to be equal to your fellow man.

Those things are important to me...

Wait, no. I do not really give a fuck and you're still mentally challenged. I can also type well enough so that it is not exerting myself though reading seems to be such a hassle for you that you're unwilling to do so without complaint while ignoring the ability to simply move along. Yes, I am going to curtail my behavior just to avoid offending ignorant puss-nuggets such as yourself. String up and save your mom the money of maintaining your dysfunctional lifestyle.

See? Now you have something to whine about or comment on legitimately. I aim to please.

Re:Holy Jebus

[Agripa]

The same trick works with double shotgun and rifle barrels. If there is a crack in the joint between the barrels, tapping them will yield a thunk instead of a ding because the crack causes loss in the reflected sound waves in the metal. The same loss in Q can be detected in a bell or other casting.

Testing regime

See, you need unit tests AND integration tests AND end-to-end tests. Some testing at every level is better than exceptional much focus at just one level.

Re:Testing regime

[bughunter]

After the doge meme's 15 minutes of internet fame, your sentence actually much parses.

Re:Testing regime

[Mikkeles]

The root cause is actually the manufacturing facility's quality assurance and control process, indirectly implicating the facility's work ethic and culture.

Re:Rings Around Uranus?

[X0563511]

The supplier who gave them bad or subgrade steel should be, they're about to get reamed...

That was easy

[durrr]

So after weeks of investigation it turns out it's a failure mode that even the most amateur of KSP players recognize.

Re:That was easy

[ray-auch]

Along with the obvious solution - add more struts, lots more, can't have too many struts...

(to be fair, most if not all, ksp players have crashed and burned way more often than SpaceX)

Re:That was easy

[Adriax]

I crash and burn more often per half hour of play than SpaceX has so far.

Re:That was easy

[adhdengineer]

At least SpaceX seems to check their staging before going to launch. That'd be embarrassing if they forgot...

Re:That was easy

[Talderas]

I once screwed up my staging. I used to separate and ignite engines simultaneously.

I got confused on which separators and rockets were together. I somehow had my command capsule separator in the same stage as my tower release for launch. I was very confused on the launch because I couldn't figure out why I had no control over the rocket.... and then my capsule blew up as the rocket reached enough speed.

When in doubt, add more struts

[Sowelu]

They should have added a lot more of them, clearly. It's not like struts have any mass.

Re:When in doubt, add more struts

[Daetrin]

And it's not like they have any affect on aerodynamics either. (At least not back when i played.)

But with that many extra pieces they will have to slow down time during launch to make sure the physics don't get wonky.

Bob Seger:

[Hartree]

"They love to watch her strut!"

Something is fishy

[Pascoea]

http://www.forbes.com/sites/al...

the heilum bottle would have shot to the top of the tank at high speed

That sounds a lot different than "a hose may have been pinched" Has anyone been able to find audio of the actual conversation?

Re:Something is fishy

[Pascoea]

This one seems to be a pretty decent explanation: http://www.orlandosentinel.com...

Re:Something is fishy

[swillden]

This one seems to be a pretty decent explanation: http://www.orlandosentinel.com...

Heh. One bit of that article made me chuckle (emphasis mine):

The explosion destroyed the $70 million rocket, its Dragon I capsule and 4,000 pounds of supplies that was headed to the International Space Station. None of it was insured.

I can just imagine Elon going to his local insurance agent, trying to get coverage for an experimental vehicle carrying 400 tons of rocket fuel and LOX.

Re:Something is fishy

[Firethorn]

Lloyd's of London will insure anything. You might just not like the premiums.

In this case, self insurance makes sense.

Re:Something is fishy

[Sowelu]

Man, every time I hear people talking about LOX like that, I think they must have one hell of a lot of bagels on the ISS.

Re:Something is fishy

[KGIII]

It makes me think of Mel's Robin Hood of Loxly. I now present to you, Bagel and Loxly...

Interesting way to sabotage SpaceX

[DickBreath]

Sell them faulty metal.

Or faulty parts made of metal.

It's just a thought, but would a competitor stoop to that? Even if not now, at some point in the future?

Re:Interesting way to sabotage SpaceX

[SuricouRaven]

Similar business practices have been used in the past. Rockefeller is a well-known example: He was an obsessive monopolist, unable to stomach the existence of any competitor to his Standard Oil empire. Among the tricks he used was to buy up manufacturers of components used in oil drilling and refining, and then refuse to sell replacements to competitors - driving them out of business when their expensive industrial machines eventually broke down and couldn't be repaired. With the competitor driven out of business Rockefeller easily purchased what was left and incorporated it into his company. He sabotaged one company by thus denying them access to oil-carrying carts for trains - and when they switched to shipping in barrels, he purchased the one company that could make a barrel sealing compound compatible with crude oil and altered the formulation to make it chemically unsuited.

Rockefeller's business practices went down in legend - you can thank him for modern antitrust laws: The first ones in the US were passed expressly in order to target him. He was the Bill Gates of the 1800s: Built up a fortune through unethical and at times outright illegal business practices, only to eventually retire and spend the rest of his life giving it away in huge grants to charitable causes.

It would be a lot harder to pull something like that today though - there are stricter regulations and laws against such things. It could be done, but it would need a great deal of legal caution and skill to avoid liability, or at least to ensure the liability lay with a collapsing shell company.

Re:Interesting way to sabotage SpaceX

[Ol+Olsoc]

It's just a thought, but would a competitor stoop to that? Even if not now, at some point in the future?

John Broder volunteered.

Re:Interesting way to sabotage SpaceX

[Ol+Olsoc]

Similar business practices have been used in the past. Rockefeller is a well-known example: He was an obsessive monopolist, unable to stomach the existence of any competitor to his Standard Oil empire. Among the tricks he used was to buy up manufacturers of components used in oil drilling and refining, and then refuse to sell replacements to competitors - driving them out of business when their expensive industrial machines eventually broke down and couldn't be repaired.

Sounds like the invisible hand of the free market in action.

Re:Interesting way to sabotage SpaceX

[bughunter]

I believe they would. I worked for American Rocket Company in 1989. They developed hybrid engine IP that SpaceDev now owns.

Anyhow, in the late 80's the owners of what would become AmRoc decided to go into the launch business and build a single stage suborbital proof of concept vehicle. Oxidizer was helium pressurized LOX tank and steered by the injected fuel vector control (60% Hydrogen Peroxide, just a few gallons). It needed a guidance system. I was a new grad hired to help obtain it, and do some of the wiring and testing.

The vendor was in Boulder CO. I forget their name. The name no longer exists because AmRoc's chief competitor, Orbital Sciences Corporation sabotaged AmRoc's avionics contract. How? On the eve of our CDR with this Boulder company, all of the employees quit, except for the two owners and a single tech who'd started the company with them. Why did they quit? Orbital Sciences Corp (now Orbital ATK, after they acquired Alliance earlier this year) hired every one of them out from under their feet promising to open a Boulder office.

And it worked. Instead of a custom designed flight computer, gyros, telemetry, data acquisition and etc., we got an avionics system made from secondhand Japanese gyros, engineering model electronics left at the Boulder shop, and the rest from the Omega catalog. Furthermore, only two gyros were available, and in that case, the Z-axis is the only choice to go uninstrumented. Which meant that the flight profile would have to rely on a simple timer schedule: when to start steering away from vertical, when to separate payload, etc. And when to pull the umbilical cord.

All of these things contributed to the failure mode: which was that the LOX valve (a 2.5" gate valve) became encased in ice after frost from the previous day's rehearsal/test pooled around the valve and then refroze when the LOX was filled on launch day. It actually opened about 10%... enough to light the engine. And the person in charge of manually pulling the umbilicals (a payload customer, not an employee) jumped the gun and didn't wait for visual verification of liftoff... so no command could be given to close the valve and turn off the engine. As a result, the rocket sat on the pad and idled, the timer ran up to the moment when the thrust vector Peroxide started flowing... and the X and Y accelerometers saw no response... so more peroxide flowed. Until it pooled in the flame bucket and caught fire.

We sent a nice big black cloud over Santa Maria that day. You can read about it here. But we did prove how safe a hybrid is: if it had been a solid engine or liquid fueled rocket, there would have been a very large explosion. Instead we effectively had a tire fire.

Amroc laid off 90% of its employees within 2 months. Closed its doors and sold its IP to Westinghouse a couple of years after that. Westinghouse later sold it to SpaceDev. And some very happy very well paid engineers in Boulder Colorado earned some very bad karma.

Do I think that Orbital ATK would pay a third party vendor to skimp a little on Acceptance Testing of critical structural components made for SpaceX?

Why yes. Yes I do.

Re:Interesting way to sabotage SpaceX

[idontgno]

Sounds like the invisible hand of the free market in action.

I think Adam Smith would have looked at Rockefeller and said "Dick move, man... serious dick move."

Re:Interesting way to sabotage SpaceX

[Ol+Olsoc]

Sounds like the invisible hand of the free market in action.

I think Adam Smith would have looked at Rockefeller and said "Dick move, man... serious dick move."

Problem of course was no one stopped Rockefeller. He was completely free to do what he did. So he did it.

There was some serious greed and pathology going on there, no doubt.

But do you think Rockerfeller would have changed one little bit because someone called it a dick move?

Transparency

[The+Raven]

I am amused by the fact that a private company does better than our government at disaster transparency. That said, it is pretty stupid that Space X has not been testing random parts to confirm they meet the requested specifications. Spec verification is a basic part of outsourcing. All outsourcing fails if you can't verify that you're getting what they promised you.

Re:Transparency

[Sowelu]

You can test random struts, but you can't test ALL struts or you're left with no struts. Sounds like they didn't test the right ones is all.

Re:Transparency

[gcnaddict]

That said, it is pretty stupid that Space X has not been testing random parts

So uh... "Further testing of struts in stock found one that failed at 2,000 pounds of force"

Sounds to me like they likely were testing them at random and then decided to start testing a vastly significant number of them to troubleshoot.

Re:Transparency

[thegarbz]

Random testing can only pick up systemic faults within an entire product line not random ones. You have to try and ensure the random samples are as representative of the collective as possible which can be helped by doing things such as random testing at least one from every heat number but ultimately you will never catch them all.

Based on the summary itself:

Further testing of struts in stock found one that failed at 2,000 pounds of force

emphasis mine. This implies that testing other ones would have shown no problem unless it was possible to classify all the failed ones by some common batch.

Re:Transparency

[Thelasko]

You can test random struts, but you can't test ALL struts or you're left with no struts. Sounds like they didn't test the right ones is all.

Who says you have to test them to failure? Just test them for the designed load.

Re:Transparency

[Thelasko]

Random testing can only pick up systemic faults within an entire product line not random ones.

Statistics is your friend in this case. Random testing should show a large standard deviation (assuming they test to failure). You should then be able to calculate the probability of failure.

This may not be so random. ...Or some shlub forgot to heat treat two of the struts.

Re:Transparency

[Sowelu]

I'm very much not an expert with this stuff, but it seems to me that if a particular strut is going to fail at 10,001lbs and you test it to 10,000lbs, it might pass the test but you still don't want to reuse it. There has to be some cutoff point where you're causing long term damage, but it's still functioning to requirements, right?

Re:Transparency

[bobbied]

You can test random struts, but you can't test ALL struts or you're left with no struts. Sounds like they didn't test the right ones is all.

Quite true, but there are OTHER ways of figuring out the strength of the part other than testing them to failure or causing damage to the parts. Some of these methods are quite expensive, but effective. How you get a one part that's 1/4th the strength the design requires through a manufacturing process, onto a flight ready hardware assembly and not know it says serious problems lurk within. Seems Space-X has some defects in it's quality assurance processes, and that should scare you more than this one launch failure. They are playing way too fast and loose with quality and I'd be very worried about their efforts towards getting "human" rated are not going well.

This was a structural failure. A failure that can likely be traced to a part that was too weak for the designed loads. This isn't a DESIGN failure, it's a QUALITY failure, and that puts the whole program into question. What has to happen now is that the whole QA process needs to be revisited and revamped to prevent structural components from sneaking though which are not strong enough to do what they are designed to. THEN you have to go though your whole stock of parts, sub assemblies, and flight ready assemblies and figure out what you can verify as trustworthy using your NEW QA process, throw out the rest and order, assemble and test replacements.

This isn't an easy or quick fix...

Then there is the whole, our supplier lied to us, approach, which will be quicker to deal with, but only because you just have to obtain a batch of replacement struts, fully tested and verified, replace all existing hardware that used the old ones by either reworking the assemblies or building new ones that have the new parts.....

I'm guessing Space-X will opt for the latter in public, but unless they sue the supplier for damages, the problem really is the former, which scares me..

Re:Transparency

[trout007]

That is why you use Statistical Process Control. I used to build assembly equipment and many tolerances were controlled by statistics. For eample say you had a certain diameter on a part that needed to be within tolerances. The first thing you do is take data on random parts to make sure all you have are random variations. If there is anything non-random you need to fix it. Then you set your control limits such that your process with your required degree of certainty is within it. So if you need the part to be from .998 to 1.001 you make sure your 3 sigma values are from .999 to 1.000. That way you can take random samples and make sure your process is in control in the limits. If your process degrades over time and you fall outside of those limits you are still making good parts you just know you need to replace tooling or perform maintainence to get the process back in control

https://en.wikipedia.org/wiki/...

https://en.wikipedia.org/wiki/...

Re:Transparency

Conveniently, this part has about a 5x margin (it was implied elsewhere that the 2000lbf is also right about the design load). They could test to two or three times the design load and not even be close to the rating.

Re:Transparency

That said, it is pretty stupid that Space X has not been testing random parts to confirm they meet the requested specifications.

RTFA. (I know, I know.) They did test random parts, and the parts they tested were okay. But when the analysis pointed back to the strut, they tested even more parts, and found an issue. Only a few of the parts had a problem, random testing missed them. Looks like now they'll test all the parts.

Re:Transparency

[bobbied]

That said, it is pretty stupid that Space X has not been testing random parts

So uh... "Further testing of struts in stock found one that failed at 2,000 pounds of force"

Sounds to me like they likely were testing them at random and then decided to start testing a vastly significant number of them to troubleshoot.

Which tells me they may have a QA process issue that compounds a design issue. NEVER do you take a single failure risk in a human rated system's structural components unless you are SURE the components are sound. So if this strut was a critical structural component without any backup and you are not totally sure it can take the load before you fly the assembly, it's a process problem.

They do want to make this a human rated system right? That goal is in serious jeopardy now. You cannot afford to "learn on the fly" like this and arrive at a human rated design. You are going to build and launch a LOT of vehicles, fixing the problems as they crop up, before the statistics will be good enough. The cheaper way is to design sufficient safety margins into the system, do a few launches and deal with the issues as they arise, but unless you REALLY mess up, any system you hope to human rate is not going to have this many loss of vehicle failures... Structural failures should NEVER happen if you are on this track, because structure should be the easiest thing to get right because it's testable on the ground...

IMHO Space X is doing this wrong, and a structural failure is a serious problem that goes beyond this one failure....

Re:Transparency

[bill_mcgonigle]

That is why you use Statistical Process Control.

I'm familiar with the system, but am still glad they do ultrasonic inspections of stress-critical airplane parts, not just a statistical sampling.

This has to do with costs vs. expenses. Settling all those wrongful death suits is expensive. Buying new rockets and payloads is expensive. Replacing dead cell phones is cheap.

If I were Musk, I'd hire some techs to do ultrasonic inspections of every strut on the way in. Or, even better, set a contract so that the failed vendor has to absorb the cost of the failed launch if the parts are not to spec.

Re:Transparency

[Kjella]

Statistics is your friend in this case. Random testing should show a large standard deviation (assuming they test to failure). You should then be able to calculate the probability of failure.

No, just no. Statistics helps if you have a process variation that approximately follows a normal distribution. It does nothing to protect you against freak failure, like say you're making creme brulee using a torch to caramelize the sugar on top but the spark to light it is only 99.9% reliable. That means 999 out of 1000 desserts will be fine and one will be a total failure, but you don't know it until it happens. Failing at 1/5th the design load is clearly outside any normal variation and tells you none of these struts can be relied on no matter what their average or standard deviation is.

Re:Transparency

[Rei]

It's not just about the cost of a failed launch, there's also a huge cost to a company's reputation if a rocket fails. And to their schedule.

Out of curiosity, is there any lightweight way to sense how close a part is to failure *in use*? I mean, finding defects on the ground is great, no question. But what if something would doom a mission not due to a part having a manufacturing defect, but due to an oversight somewhere in the rocket design process, or assembly, or transportation, or launch setup, or unexpected weather conditions, or whatnot? It seems to me it could be a massive boost to launch reliability if one knew that a part was about to fail - for example, in this case, the computers could automatically have throttled back to the rocket to reduce stresses, at the cost of expending more propellant, and possibly been able to salvage the mission. And then the problem could be remedied for future missions, without having to have a launch failure first.

To pick a random, for example, would there potentially be a change in resistance or capacitance or other electrical properties when a strut nears its breaking point?

Obviously, though, if adding sensing hardware would add a high weight or cost penalty, that would be unrealistic.

Re:Transparency

[Pascoea]

That said, it is pretty stupid that Space X has not been testing random parts to confirm they meet the requested specifications.

From the article:

That led the company to test what Elon Musk described as an “enormous” number of struts, where they found another strut that failed under the same conditions.

How many struts would they a have to randomly test to catch the two out of an "enormous" amount that actually failed? And do you honestly think they aren't already testing parts?

But, clearly you know better than they do, so here, go show em. Maybe there is "strut tester" in there somewhere.

Re:Transparency

[DerekLyons]

I am amused by the fact that a private company does better than our government at disaster transparency.

Outside of classified launches... when exactly was the government not this transparent (and more)?

Re: Transparency

[LazyBoot]

Even the video streams showed Dragon getting thrown clear.

Re:Transparency

[thegarbz]

Statistics may be your friend but cash is your enemy. It's hard to justify the cost of destructively testing more than one thing in any order, even harder if most of them come back without issue from a preferred vendor who's never done you wrong.

Re:Transparency

[thegarbz]

That is a great thing to incorporate by the vendor, not so great when you're buying a product. As an end user for a product someone else supplies it gets hard to justify the cost of destructive testing, sometimes it's even hard to justify the cost of non-destructive testing of items bought from other people.

Re:Transparency

[drinkypoo]

To pick a random, for example, would there potentially be a change in resistance or capacitance or other electrical properties when a strut nears its breaking point?

That ought to be easy to test, at least experimentally, using capsense...

Re:Transparency

[mysidia]

I know that no part has a 0% defect rate, so perhaps they should engineer their system so that a failure of no one strut is not catastrophic.

If the strut would need to bear 2000 pounds on its own, then they should spec. it to the manufacturer for 4000 pounds and add more struts to spread the load.

Re: Transparency

[oobayly]

FTFS: ". The failure occurred at 2,000 pounds of force, and the struts were rated at 10,000 pounds of force". We don't know what the maximum force expected is.

As for more struts, when you look at the Soyuz interstage lattice, I wonder what would happen if just one those failed...

Re:Transparency

[Twinbee]

Before you immediately say 'no', I would be very interested to know what the distribution actually is in this case. It may closer to normal than you think.

Re:Transparency

[dywolf]

QA of a structural part -DOES- involve testing it to failure.
A batch is made and a random representative sample of the batch is tested to failure.
That tells you then whether the batch as a whole may have had issues in the manufacturing process, and warrants further investigation.

This is done because they aren't designed to meet a specific use load, but rather to meet a specific failure load.
A beam, a strut, or any other structural member is designed and then chosen for its task according to its failure or yield strength.
Actual usage is then determined as a portion of that ultimate strength in order to provide a known Factor of Safety.

If the sample passes, then most likely the whole batch will too, although there is a slim chance a few pieces may not, but that chance is reduced by having consistent and quality manufacturing method/process. I could make 100 pieces, and test 95 of them to achieve that high confidence...but that's not very efficient. The better the process, the smaller the sample can be and still represent the whole batch.

Re: Transparency

[D.McG.]

While there were a significant number of struts that failed at 6,000 lbs (3x what's needed) rather than the rated 10,000 lbs, only 1 in a batch of 1,000 struts failed at 2,000 lbs. They found a 0.1% failure rate. Random testing from a batch would not have found the needle in the haystack. SpaceX (Elon) has said they will test each and every strut now, not just a few.

Re: Transparency

[D.McG.]

Elon stated on the conference call that material analysis of the 2nd strut to fail at 2,000 lbs revealed a problem with the grain structure in the steel. All other bets are off regarding speculation of points where the strut may have buckled. The steel was to blame, not the assembly.

Re: Transparency

[D.McG.]

SpaceX has probably been performed random testing of these struts for the 7 years (17 rockets) in which they did not find a failure. The failure rate is less than 0.1% in this case, but was virtually 0% until the first failure. Try determining a standard deviation when there were no failures to date.

Re:Transparency

[Thelasko]

...it might pass the test but you still don't want to reuse it. There has to be some cutoff point where you're causing long term damage, but it's still functioning to requirements, right?

It's called the yield strength. It's very much measurable.

Re:Transparency

[WindBourne]

Unless of course, you want the system to be re-used a large number of times. Then you over-design, while keeping it lightweight.

Re:Transparency

[WindBourne]

Actually, the strut was designed to hold 5 tons, but failed at 1 ton.
In addition, it takes multiples struts to hold the tank in place.

Re: Transparency

[bobbied]

While there were a significant number of struts that failed at 6,000 lbs (3x what's needed) rather than the rated 10,000 lbs, only 1 in a batch of 1,000 struts failed at 2,000 lbs. They found a 0.1% failure rate. Random testing from a batch would not have found the needle in the haystack. SpaceX (Elon) has said they will test each and every strut now, not just a few.

Well testing found ONE, but the launch found another... You miss my point though. Their process allowed one of the two bad parts into flight ready hardware where it broke and cost them the vehicle. This is a process problem...

Re:Transparency

[bobbied]

Oh, so now you are talking sabotage? Yea, not going there myself... Maybe an assembly or handling error, but not what you are suggesting...

certified materials

When your making something that has to withstand x units of load, it has to be certified of a certain grade of material, known to give the required strength + safety factor in design or you are guessing and trusting to luck.
SpaceX should be buying certified raw stock to process into parts, if someone sold them stock with forged certs, that someone is in bad doodoo, if they knowingly bought stock without checking the certifications themselves, they are as much to blame as the supplier.
Part of me doesn't want to think this is a result of building down to a lower price than traditional space exploration costs. There is a element besides pork making some things seem insanely expensive, and maintaining a genuine certified material stock process is one of those seemingly un-needed expenses...

Re:certified materials

[bobbied]

I think you hit the nail on the head with that $250 hammer...

Space X has apparently having systemic Quality Control problems. A structural failure of ANY component that costs you a vehicle in flight is a SERIOUS issue with your process. Either they didn't recognize this component's critical nature in their design reviews and properly established safety margins for it's strength, or they unknowingly used substandard parts in the assembly.

Structural failure should NEVER be the cause of an accident. Structure is NOT rocket science, but well understood and easily tested before you put a design into the air. The loads on the structure should be easily calculated and the structure designed with sufficient margin to handle them. Testing the structure to the margin limits is not that hard and doesn't require you go fly the thing. Aerospace engineers are very familiar with the process.

Re:certified materials

[Rei]

You think having the part designed to handle five times the load it actually experienced to not be "with sufficient margin"? How much of a margin do you want them to put, 100x?

RTFA. They were doing statistical-sampling quality control testing of struts. The problem was that most of them were just fine, but there were a very small number which were totally defective and broke at a tiny fraction of their rated value. And no, SpaceX did not make the parts, it was an outside supplier. And yes, SpaceX A) will now be testing 100% of them, and B) is ditching the supplier.

Re:certified materials

[bobbied]

TESTING requires destruction of this kind of thing as I read the article. They will NOT be doing 100% testing to failure of their stock of struts, except to prove to themselves how bad their supplier really was.

Apparently their testing process was insufficient to be sure, which is my point. You DON'T put a flight critical structural component into an assembly unless you are SURE it's going to work at least to the design limits required. Structural failure is a serious problem in the aerospace world and betrays a serious process problem at Space X. Structural failure should not ever be an issue that leads to the loss of a vehicle, especially one that is intended to be human rated in the future.

So I'm not saying they need margin beyond what they have, but that if you don't have structural redundancy in your design, you have critical parts that MUST be validated structurally sound by your quality assurance processes and statistical sampling is not sufficient for this part. If their process says that statistical sampling WAS good enough in this case, their process failed them. If the process failed, then the problem is much bigger than just this strut, this launch, this failure or even this supplier, it becomes systemic with Space X. And that leads one to question the whole program. Questions that I believe are legitimate ones to ask.

Re:certified materials

[im_thatoneguy]

TESTING requires destruction of this kind of thing as I read the article. They will NOT be doing 100% testing to failure of their stock of struts, except to prove to themselves how bad their supplier really was.

Nobody said they would be testing to failure. You can test every unit to say 150% of failure. If the material is rated for 1000% of failure then 150% should be safe. If it doesn't fail at 150% once it probably won't fail at 100% 100 times. So now you're at 99 times until mean failure instead of 100.

Re:certified materials

[konohitowa]

Things could be worse. One of Musk's companies could be responsible for automative manufacturing.

Re:certified materials

[Twinbee]

A design problem would concern me more. That would show they have more fundamental issues with the safety of the rocket. A quality issue like this can be overcome more easily, and is at least the vendor's fault in part.

Re:certified materials

[bobbied]

I suppose that's somewhat true, a design problem would be a bigger deal and point to an even bigger issue in their process, but one *could* argue that having a single point of failure in a flight critical part of the structure really IS a design issue. I'm choosing to give them the benefit of the doubt on this, but this only means that the QA process is an open question still. How do you go fly with a system that will suffer a structural failure? How does a mission critical safety of flight structural component become the primary cause of a failure?

Re: certified materials

[bobbied]

Cars and rocket science... Hmmm, you seriously think a car safety record has anything to compare to something in the aerospace world? His cars may be the safest on the road, but that doesn't mean he builds safe rockets, or that the QA processes for automobile manufacturing applies to aerospace vehicles...

Re:certified materials

[bobbied]

Yes, you can test to design specifications before you assemble if you specify a part strength at failure which is well above the design...

However, my point here is that the *real* problem isn't the design, but the QA process that allowed an assembly to be certified for flight with a strut that didn't even meet the minimum design load, when that strut was a critical component for flight.

This was a process failure, first and foremost. The structural failure and loss of the vehicle was just the end result of the process failure.

Re:certified materials

[Talennor]

I get what you're saying. But to understand the comment you're replying to you should know that "failure" in materials is a term meaning something very destructive past yield. You're using the term to apply to a safety factor, which while valid will confuse materials people using the word to mean materials failure.

Re:certified materials

[WindBourne]

testing does NOT require destruction.
The expected load was 1 ton. The part was supposed to handle 5 tons.
All that you have to test for is 2 ton (which is 2x what is expected). And that is NOT destructive.

Re:certified materials

[bobbied]

Why do people not realize that I'm not arguing their design was wrong... It's the PROCESS that's the problem here. If they *could* perform a nondestructive test of a flight critical component, what kind of dolts don't test it? This is supposed to be a HUMAN RATED vehicle after all.

They had a hardware assembly FAIL in flight, a structural component failure that caused the loss of the vehicle. The problem wasn't design, the problem was quality control of the structural components and the process that allowed for a bad strut to make it into flight hardware. Aerospace engineers know all too well how to do structure design and verify their design. But there is NO excuse for flying an assembly that has a flight critical structural component which fails, especially in a soon to be human rated system.

No, the problem is the process... Where it MIGHT be limited to just this strut problem, somehow I don't think it is. They have a systemic problem with their process, or they didn't follow the process. Both are SERIOUS issues and tells me that Space X is likely cutting corners a bit too much. Best case is the process is the problem, so I'm giving them the benefit of the doubt here.

Re: certified materials

[konohitowa]

It's nearly pointless trying to explain something to a non-engineer when it comes to these things. The fact that they brandished a safety rating without understanding that it has nothing to do with QA makes it unlikely that they have the background necessary to understand your point. Never mind that my remark was primarily tongue-in-cheek.

Re:They do their homework

Stop using monospace, you're not a special snowflake.

Everybody who sees posts in monospace just skips over them.

$10,000 toilet seats

[MikeMo]

THIS is why aerospace and aeronatical parts cost so dang much.

Re:$10,000 toilet seats

[Moof123]

Yep. Once you have thousands of parts all designed to trade off as much strength for weight reduction as possible it doesn't take much of a manufacturing hiccup to cause an expensive "excursion". Vendors end up having to rigorously test every widget, and custom design it just for you.

Before long $10k each for a batch of a half dozen toilets seat that are space rated to not outgas funny chemicals that foul optics, handles 10g's, has 6 sigma of de-rating for the bolt hole strength, weighs under 500g, and is non-flammable starts sounding like a deal.

Re:$10,000 toilet seats

[mysidia]

Before long $10k each for a batch of a half dozen toilets seat that are space rated

There is a justification for this however.. If you are sitting on the only potty in HQ and the toilet seat collapses beneath you, then your ass is in deep shit....

Is that how you itemize?

[mi]

Now THAT is how you summarize.

By manually numbering each item of <ul> instead of simply using <ol>?

Re:Is that how you itemize?

[dave420]

Here's what a numbered list looks like in slashcode:

1. No
2. Numbers
3. Present

You really should stop leaping to conclusions - it can cause you to fundamentally misunderstand the world you live in, which would explain a lot of the stuff you post here ;)

Would have saved itself

[cbhacking]

Pilot wouldn't have needed to. Dragon 2 has automatic abort capabilities (even when unmanned). It would have separated from the second stage - probably firing its SuperDraco thrusters - and then automatically deployed parachutes once it was a safe distance away.

Dragon 1 doesn't have the SuperDracos (only the much smaller Draco attitude control thrusters) so it wouldn't have been able to put as much distance between itself and the booster, but from the video and the telemetry it looks like the capsule survived the (accidental) separation anyhow. It could have deployed its parachutes and probably survived the landing, but it wasn't programmed to do so. They have added it to the Dragon 1 programming now though.

Failures that occur high enough to land under parachutes, slow enough to get away from the inevitable explosion without heavy rockets, and early enough in flight that there's no time to manually enable the landing sequence are... really, really rare in rocketry. Usually you either fail at liftoff (see Orbital's last attempt to launch Antares), fail rapidly and catastrophically during liftoff (any number of examples), or fail once in orbit (often, though not always, at stage separation). In orbit you have time to make a decision and send orders. On the launchpad you can't land safely (without abort rockets). In midair you *usually* can't get away in time (without abort rockets). This was an exception to the "in midair" usual failure case; there were nine seconds from beginning of the failure to loss of vehicle, and in fact the capsule had already tumbled free (and probably *could* have used its ACS thrusters to put some extra distance between itself and the booster.

One thought, though: what about, in the case of a pre-separation second-stage failure, executing MECO 1 (Main Engine Cut Off, when the Falcon 9 first stage kills its rockets) early and doing an emergency stage separation? Normally there's no point - the first stage on most launch vehicles has no purpose if the launch fails and nowhere to go even if it separates safely - but the Falcon 9 first stage is designed for reusability. Emergency MECO, separate the stages, use the ACS and/or grid fins to steer clear of the second stage, and then fire up the main engines again and aim for the droneship or other landing pad. You'd need to be quick about it, and it might still not work, but if it does you've saved a booster worth $70,000,000 USD. Well, that and demonstrated the first successful first stage recovery ever, but assuming that becomes as routine as Musk wants it to be...

Actually, it would have been super cool if the first successful recovery of the first stage had been an emergency abort!

Re:Would have saved itself

[AJWM]

Actually, it would have been super cool if the first successful recovery of the first stage had been an emergency abort!

Something like this actually happened on the fourth or fifth flight of the DC-X test vehicle. It had made several successful launches, hovers, and vertical landings and the test profile had it going to higher and higher altitudes and doing some interesting maneuvers. Anyway, on the nearly fatal flight, due to wind conditions in the launch area, hydrogen gas (it was LH2/LO2 fueled) collected near the base of the rocket and ignited in a mild explosion at launch, with the shockwave blowing off some of the DC-X's airshell. The rocket continued climb-out, shedding more pieces as it went, as the observers watched. Pete Conrad (the astronaut, who as part of the DC-X team was controlling the flight from the ground) calmly clicked the "abort" sequence on the control computer. The DC-X stopped its ascent, hovered to burn off fuel (to lighten the load on the landing gear) and then landed safely.

Try that with any other rocket. (The DC-X's engines were modified RL-10s, much more deeply throttleable than Falcon's Merlin engines.)

Re:They do their homework

[fnj]

Shut the fuck up, nameless twit

It's not just audio triangulation

[Bruce+Perens]

The sound triangulated was in cryogenic liquid oxygen at 50 PSI. The speed of sound in that is approximately 1 kilometer per second.This paper is about calculating the exact speed. Elon talked in the conference about reading telemetry with millisecond accuracy. But this would yield only 1 meter resolution.

Re:It's not just audio triangulation

[TWX]

That still gives them a much smaller area to examine though, and many fewer parts to potentially destructively test. It also might allow for some manufacturing to continue if they've got large assemblies independent of the predicted failure point that they can work on, so the company doesn't have to lay-off its manufacturing staff while identifying the fault.

Re:It's not just audio triangulation

[halltk1983]

Using multiple sources helps to cut down on that as you look at the one meter areas from each sensor and find the overlapping areas, which are likely much smaller than one sq m.

Re:They do their homework

[imboboage0]

Trolololol lol lol lol lollll

way to go.

Re:They do their homework

[KGIII]

Alternatively: Control your browser. You *do* have control over your browser, right?

Re:They do their homework

[dave420]

How does that help the monospace-fetishist improve their readership? If someone points out to you that your hat is on fire, do you thank them for helping you or snipe back that they should stand further away from you if they don't want to get burned?

Re:They do their homework

[KGIII]

It helps the reader not have to worry about such rather than expecting others to conform to their behavior. Control your inputs and outputs. This is not a difficult concept. There will always be some moron who wants to post in monospace format. You can not change them. You can change you.

Engineering and errors

[sjbe]

And as an engineer, I know that most engineers want to act in good faith. Some are inept or inexperienced but they still have good faith. The problem lies in management. Once you get the lawyers and bean counters involved is when asshole decisions like that get made.

I'm an engineer but I'm also an accountant (aka a bean counter). I also am management in my company and I'm in charge of the engineering, production and accounting among other things. You are absolutely right that most of the time the fault for most failures ultimately is due to management decisions. At the end of the day the buck stops with them and that is how it should be. HOWEVER, management ultimately relies on the expertise of engineers and the reasoned opinions of those who report to them. If management gets bad information (happens all the time) then management decisions are more likely to be bad ones. That's not to say that management can't introduce cock-ups all their own (we all know they routinely do) but bad management decisions normally don't happen in a vacuum. Most serious screw ups in a company happen because people at multiple levels in a company made a mistake. It's not just management or engineering or accounting alone. Rockets blow up when all these mistakes made by multiple people line up in just the right way. Business is a team sport and most failures in business involve more than one person.

Engineering is kind of like playing chess. You can see the entire board and you know (or should) what is possible at any given moment because you have close to perfect information. If you are good enough mistakes are largely predictable. Management is more like playing poker. You rarely have perfect information and you have to guess based on your assessment of the probabilities and sometimes you'll be wrong even if you play the hand perfectly. The mindsets needed for success in each for each are very different and can be hard to reconcile at times.

It has also been my experience that there are FAR more inept engineers that most people realize. Specifically too many engineers are inept at product and process documentation. It's boring and despite its importance it tends to get overlooked and engineers often spend as little time with it as they can get away with. I run a contract manufacturing company that makes wire harnesses. I can count on my fingers the number of product drawings that I've received in the last 5 years from all our customers combined that I could manufacture without having to get substantial clarification from the engineering staff at our customer. I routinely see ambiguous dimensions, incompatible parts, improper or incomplete specifications, missing part numbers, internal part numbers (useless to anyone else), incoherent diagrams, unnecessary lookup tables, obsolete or hard to get parts, and more. Most engineers I've run into are really quite terrible at documentation. I see drawings daily that were clearly not written with the expectation that anyone else might ever read them despite the fact that someone else reading it is the entire point of the document.

What's this thread about

[tomhath]

I never read monospaced posts. Can someone summarize what the parent said?

It wouldnt be Elon, it'd be the cargo owner

[PPalmgren]

Most commercial and large-scale shipping endeavors (hell, even UPS) require the sender to insure their package if they want coverage in case of loss. This is the same with commercial container ships, and I suspect the same with airline freight.

Re:It wouldnt be Elon, it'd be the cargo owner

[swillden]

In this case the actual value of the cargo is negligible; what matters is getting it to the space station. Since NASA only pays for the transport if the cargo arrives, they're already covered for all but the tiny cost required to replace the cargo itself. If anyone were to seek insurance it would be SpaceX, since they're the ones at financial risk.

Re:It wouldnt be Elon, it'd be the cargo owner

[swillden]

Also, it's worth pointing out that commercial shippers do insure their transport vehicles. Though larger entities (like UPS) almost certainly self-insure, since they can absorb the risk at lower cost.

Vendor relations

[sjbe]

Hardly. This points more to poor vendor selection and a crap procurement process. In many cases the costs of faults should be contractually passed back to the vendor. The end result is a more costly product but with higher quality as a result.

Even good vendors sometimes make mistakes. Even good engineers sometimes overlook important details. I can assure from personal experience you that even draconian claw-backs (if you can get them) will not result in a good product and frankly are unnecessary in most cases. It is FAR more complicated than that. You are right that the problem is with flaws in procurement but the answer isn't just claw-backs. Good vendor relationships require quite a lot of oversight, interaction, structure and cooperation. New vendors typically require a lot of oversight until the interaction, structure and cooperation can develop.

The problem is that salesmen are lying bastards.

That should not be relevant once the engineering staff gets their hands on the product specifications which would be necessary prior to quotation for anything built for a company like SpaceX. To build any custom product the engineers will have to evaluate and sign off on the production process. Purchasing would have to sign off on the procurement. Any company that simply lets their sales people throw out randomly generated numbers for engineering intensive products isn't going to be around for long. I know because I run a manufacturing company that makes such products. The dumbest thing we could possibly do would be to give our sales representatives carte-blanche. We'd be out of business within a year if we did that.

When you get the technical people on the phone (if you can get them) the complete and typically trustworthy story comes out.

I am an engineer (among other things) and I work with engineers all the time. I can assure you that getting a complete answer out of engineers at other companies can be exceptionally challenging at times. It's not that they lie but rather that they are busy, hard to track down (esp in big companies), you are a distraction, sometimes they are lazy and more than you would think are not especially competent. I run into a LOT of engineers that are really quite bad at writing engineering documentation. I run into quite a few others who have an exceptionally poor concept of design for manufacturing. Working with engineers can be great but I can assure you from first hand experience that it can be quite a challenge at times too.

Re:It will take time to sort this out

[0123456]

Apollo 13 was a near miss also likely due to quality.

No, Apollo 13 happened because of TESTING. Had they not tested the oxygen tank, it would have been fine.

Re:It will take time to sort this out

[0123456]

Oh, and had the oxygen quantity gauge not failed, they would have died. The failed gauge led to them stirring the tank more often, so it blew up before the reached the Moon. In the original mission plan, that oxygen tank stir would have happened while the LEM was on the lunar surface.

So, if anything, Apollo 13 is an argument for less testing, not more.

why they were not testing it?

[rch7]

I thought things like x-ray examination and grain analysis are mandatory for every semi-critical product in the steel industry.
And they putting some untested struts in the rocket that costs many millions? How can it happen?

Faulty Strut May Have Led To Launch Failure

[Culture20]

I hope the Ministry of Silly Walks is conducting a full investigation.

Re:It will take time to sort this out

[frog_strat]

The book Normal Accidents takes a look at several famous failures (Kansas City Walkway, Space Shuttle, etc) and a common phenomenon emerges: a last minute test or modification, often to increase safety, plays a significant part in the system failure.

OT: SourceForge

[mi]

Sourceforge is blocked by chrome and ublock

If anything, that Google's monopoly blocks it is a reason for "everybody sane" to give it a benefit of the doubt.

But, whatever — as long as it is used by actual developers — such as the guy behind UDT — and offers its vast network of mirrors for downloading open source code, I'll keep using them, thank you very much.

Whatever the site does in its attempts to monetize its numerous Winblows users is of no concern to me.

Re:OT: SourceForge

[perryizgr8]

It's not even working right now: https://i.imgur.com/Rgb73Hf.gi...

Re:They do their homework

[KGIII]

If they did not then there would be just as many people complaining that they could not. I over-ride fonts with my browser's settings. It works for me. There is always going to be a dumbass in every crowd and there is usually more than one. I can not control them but I can control me.

escape system

[Jookey]

I'm wondering why they didn't turn on Dragon's emergency abort system. Space X missed a golden opportunity to test it. Recovered the payload in-tacked after a launch failure would have been more impressive than a successful launch.