Sean Dague b4591df9e9 have realtime engine only search recent indexes ...

Elastic Recheck is really 2 things, real time searching, and bulk
offline categorization. While the bulk categorization needs to look
over the entire dataset, the real time portion is really deadline
oriented. So only cares about the last hour's worth of data. As such
we really don't need to search *all* the indexes in ES, but only
the most recent one (and possibly the one before that if we are near
rotation).

Implement this via a recent= parameter for our search feature. If set
to true then we specify the most recently logstash index. If it turns
out that we're within an hour of rotation, also search the one before
that.

Adjust all the queries the bot uses to be recent=True. This will
hopefully reduce the load generated by the bot on the ES cluster.

Change-Id: I0dfc295dd9b381acb67f192174edd6fdde06f24c

2014-06-12 17:53:26 -04:00

..

cmd

Fix elasticsearch URL for gate queue

2014-03-20 10:30:25 -07:00

tests

Don't include recheck instructions when unclassified failures

2014-04-01 21:21:44 -07:00

__init__.py

Further shuffling to get this to fit the standard code layout

2013-09-25 18:20:51 -07:00

bot.py

have realtime engine only search recent indexes

2014-06-12 17:53:26 -04:00

elasticRecheck.py

have realtime engine only search recent indexes

2014-06-12 17:53:26 -04:00

loader.py

Revert "move to static LOG"

2014-03-06 11:12:43 -08:00

query_builder.py

Take advantage of the new build_short_uuid field.

2014-03-26 12:14:32 -07:00

results.py

have realtime engine only search recent indexes

2014-06-12 17:53:26 -04:00