CockroachDB connector

CockroachDB is a distributed SQL database management system with focus on scalability, performance, and high availability. It is designed to be compatible with PostgreSQL and offers distributed ACID transactions, automatic sharding, and fault tolerance. CoackroachDB is an open-source software developed by Cockroach Labs.

Supported platforms

Unix
Linux

Supported versions

23.1

Supported features

Mode	Feature	Availability
Security	TLS/SSL	Available
	Password Vault	Available
	Kerberos	Unavailable
In-place masking	Multi-tenant	Available
	Streams/Threads	Available
	Batch Update	Available
	Drop Indexes	Available
	Disable Triggers	Available*
	Disable Constraints	Available*
	Identity Column Support	NA
On-the-fly masking	Truncate	Available
	Disable Triggers	Available*
	Disable Constraints	Available*
Profiling	Multi-tenant	Available
Profiling	Streams	Available

Identity column support is not applicable for CockroachDB because CockroachDB will automatically create a primary key column with the name ‘rowid’ If you don't define a primary key at table creation time.

Triggers are not a supported feature for CockroachDB, request to add this feature is tracked under https://github.com/cockroachdb/cockroach/issues/28296

Primary Key and Unique constraints can’t be dropped because of the issues tracked under https://github.com/cockroachdb/cockroach/issues/48026?version=v23.1 and https://github.com/cockroachdb/cockroach/issues/42840?version=v23.1

The Continuous Compliance Engine requires the multiple_active_portals_enabled feature to be enabled in order to successfully mask data in CockroachDB. If job fails with the following error during masking, it indicates that the multiple_active_portals_enabled is set to False causing the follow error:

Caused by: org.postgresql.util.PSQLException: ERROR: unimplemented: multiple active portals is in preview, please set session variable multiple_active_portals_enabled to true to enable them.

To resolve this, enable multiple active portals using one of the following methods:- Set the multiple_active_portals_enabled session variable to True. Refer to the CockroachDB documentation CockroachDB documentation for more details.

Alternatively, create a custom property file with the following content and add it to your CockroachDB connector, following the instructions in the Create, test, edit, or delete a connector page:

options=-c multiple_active_portals_enabled=true

TLS/SSL setup instructions

Add the database’s certificate in the setup application using instructions in the Adding a certificate section, in the TrustStore settings article.
Restart the Delphix Continuous Compliance Engine.
Create a CockroachDB connector in the Delphix Continuous Compliance Engine with the relevant parameters. Upload the properties file for the connector with the following:

ssl=true
sslmode=verify-full
sslfactory=org.postgresql.ssl.DefaultJavaSSLFactory

To use the verify-full setting (highest security), the Cockroach database certificate’s Common Name (CN) field must match the hostname. To check the CN value in the certificate, run the following command: openssl x509 -in server.crt -text -noout.