The night before last the email app on www.me.com "got" me.

I was trying to send an email from my me.com address to my wife's email (also on me.com.) I pressed send and there was a long delay. Then the app told me it could not send the email -- I should try again later. I tried many times, and then went to another email site and sent it from there. The next day, my wife wondered why I sent her the same message so many times. Evidently most, maybe all, the emails I thought had failed were successfully delivered.

So, evidently Apple's dot.me code has a deadline miss handler for email transmission -- good. But, it was seeing false misses -- bad. Thinking about how that could have happened reminded me of a related problem that I don't see much any more.

Sometimes, when I buy something online, the web site tells me to click a button to finalize the transaction and warns me not to click it again or go back. The transaction may take some unspecified long time. When I'm in a bad mood, that warning gets me grumbling about lazy programmers.

First: completing a transaction that involves a credit card is a complicated, distributed, activity, but have they tried to use real-time programming disciplines? Can't they tell me how long I should wait before I know something went wrong?

Second: if they can't give a guarantee, how about a deadline miss handler? Then after a second or two I'd see something that says there was a problem and offers to email me an acknowledgement if I don't want to wait.

Third: if all real-time considerations are out of reach, why don't they make the dangerous actions (pressing buy again) impossible before they submit the transaction.

Last: if all that is impossible, why don't they look for duplicate transactions and eliminate them. That could be done off-line.

Here's the process I imagine going through the dot-me architects' heads.

When the user presses the send button, turn it inactive and wait for a response from the server before going back to the normal email display.

But, what if the server never responds? It will hang the dot-me window, or maybe the whole browser. The user will assume something's broken, probably quit the browser, and probably think nasty things about us.

So put a timeout on waiting for the server. Make it the lesser of the maximum time the server could possibly take and the maximum amount of time we can let the user wait before the browser looks hung. If it takes longer than that, the mail server's got to be down. Tell the user to try again later and release the GUI.

What if the server was slower than we thought and it tells us it did send the email...after we decided it wouldn't?

What can we do? The user might have sent it again, or maybe he gave up and went on to work on something else. If we tried to tell him that we were wrong about failing and we did send the email, how would we even tell the user (simply) which email we're talking about?

But, if what if it does succeed late, and it's a big message, and the user sends it a lot of times? It could fill the recipient's mail box, or make the sender look silly.

Look, the timeout is, like, 15 seconds. We're a client/server application. If the server takes that long it's dead and we've got serious trouble. It isn't going to send the message late.

My imaginary architects just decided the server side code -- at least the mail server part of it -- was a kind of hard real-time application. A late response from it is worse than useless. (Though in this case missing a deadline is survivable. The server could meet its timing requirement by dropping any email that it did not send by its deadline.) That's fine. It might even be the only practical way to design this kind of distributed application. However, they evidently didn't tell the people designing the server that their application had a deadline.

I wonder whether async client/server internet apps (the AJAX family) will push people to write real-time code on the server.