elasticsearchmachine
commented
3 months ago Pinging @elastic/es-storage-engine (Team:StorageEngine)
Open martijnvg opened 3 months ago
elasticsearchmachine
commented
3 months ago Pinging @elastic/es-storage-engine (Team:StorageEngine)
All downsampled indices will contain fields of type
aggregate_metric_double, which is the result of downsampling numeric fields withtime_series_metricattribute set togauge. Supportingaggregate_metric_doubleis required to supported tsdb in es|ql.ES|QL has a much more advanced type system than aggregations. Aggregations almost always return numeric responses as double, whereas es|ql returns numeric fields in the type that they are mapped. This means
aggregate_metric_doublefield type isn't sufficient as it would only allow to query rational gauges that have downsampled and not whole number gauges that have been downsampled.The
aggregate_metric_doublefield type was sufficient for aggregations, but with es|ql's more sophisticated type system it isn't enough. Therefor we should introduceaggregate_metric_long, which is similar toaggregate_metric_doublebut for gauges that are whole numbers.Additionally es|ql needs to understand to the gauge fields are typed differently depending on whether a backing index has been downsampled. For example the first few indices a gauge may be mapped as
double, but in the last backing index it is mapped asaggregate_metric_double. We should allow queries to hit all these indices with failing with validation errors.Tasks:
aggregate_metric_double. We should be able to support this field type by letting functions choose which sub field of an aggregate_metric_double field to use as part of the query planning. If no sub field is choses the default sub field is used. #109883aggregate_metric_doubleanddouble(and smaller type floating point types) in es|ql.aggregate_metric_longfield type and teach downsampling to use that instead ofaggregate_metric_doublein cases the original field is a whole number like field type.aggregate_metric_longfield type in es|ql.