fix(stealth): fix error handling correctness while preserving intentional output sanitization [CL-2]

vringar · vringar · commit 379b77140498 · 2026-04-04T21:09:41.000Z
- generateErrorObject: return original error as fallback instead of undefined
- DOMException: preserve err.name (e.g. SecurityError) via constructor second arg
- Object.getPropertyDescriptor: use Object.defineProperty with enumerable:false
- Enhance test_stealth_records_js_calls with data quality assertions
- Add test_legacy_records_with_call_stacks baseline test
diff --git a/Extension/src/stealth/error.ts b/Extension/src/stealth/error.ts
@@ -23,7 +23,7 @@ function generateErrorObject(
       (typeof err.name === "string" && err.name === "DOMException")
     ) {
       // DOMException constructor takes (message, name) not (message, fileName)
-      fakeError = new wrappedJS.DOMException(err.message);
+      fakeError = new wrappedJS.DOMException(err.message, err.name);
     } else if (
       ErrorConstructor &&
       typeof ErrorConstructor === "function" &&
@@ -43,7 +43,7 @@ function generateErrorObject(
   } catch (error) {
     console.log("ERROR creation failed. Error was:" + error);
   }
-  return fakeError;
+  return fakeError || err;
 }
 
 /*
diff --git a/Extension/src/stealth/instrument.ts b/Extension/src/stealth/instrument.ts
@@ -92,18 +92,23 @@ function serializeObject(
 
 // Rough implementations of Object.getPropertyDescriptor and Object.getPropertyNames
 // See http://wiki.ecmascript.org/doku.php?id=harmony:extended_object_api
-Object.getPropertyDescriptor = function (subject, name) {
-  if (subject === undefined) {
-    throw new Error("Can't get property descriptor for undefined");
-  }
-  let pd = Object.getOwnPropertyDescriptor(subject, name);
-  let proto = Object.getPrototypeOf(subject);
-  while (pd === undefined && proto !== null) {
-    pd = Object.getOwnPropertyDescriptor(proto, name);
-    proto = Object.getPrototypeOf(proto);
-  }
-  return pd;
-};
+Object.defineProperty(Object, "getPropertyDescriptor", {
+  enumerable: false,
+  configurable: true,
+  writable: false,
+  value: function (subject, name) {
+    if (subject === undefined) {
+      throw new Error("Can't get property descriptor for undefined");
+    }
+    let pd = Object.getOwnPropertyDescriptor(subject, name);
+    let proto = Object.getPrototypeOf(subject);
+    while (pd === undefined && proto !== null) {
+      pd = Object.getOwnPropertyDescriptor(proto, name);
+      proto = Object.getPrototypeOf(proto);
+    }
+    return pd;
+  },
+});
 
 function updateCounterAndCheckIfOver(scriptUrl, symbol) {
   const key = scriptUrl + "|" + symbol;
diff --git a/test/test_stealth.py b/test/test_stealth.py
@@ -98,7 +98,7 @@ class TestStealthDetection:
     """
 
     @pytest.fixture(autouse=True)
-    def set_tmpdir(self, tmp_path: Path):
+    def set_tmpdir(self, tmp_path: Path) -> None:
         self.tmpdir = tmp_path
 
     def _get_stealth_config(
@@ -140,60 +140,61 @@ def test_stealth_passes_all_detection_checks(self):
         assert results, "No detection results collected"
 
         # navigator.webdriver should be hidden
-        assert results.get("webdriver_flag") is True, (
-            "navigator.webdriver was not hidden by stealth extension"
-        )
+        assert (
+            results.get("webdriver_flag") is True
+        ), "navigator.webdriver was not hidden by stealth extension"
 
         # Canvas functions should still appear native (no prototype pollution)
-        assert results.get("canvas_functions_native") is True, (
-            "Canvas functions are not native - stealth instrument should avoid prototype pollution"
-        )
+        assert (
+            results.get("canvas_functions_native") is True
+        ), "Canvas functions are not native - stealth instrument should avoid prototype pollution"
 
         # Storage functions should still appear native
-        assert results.get("storage_functions_native") is True, (
-            "Storage functions are not native - stealth instrument should avoid prototype pollution"
-        )
+        assert (
+            results.get("storage_functions_native") is True
+        ), "Storage functions are not native - stealth instrument should avoid prototype pollution"
 
         # Navigator getters should appear native
-        assert results.get("navigator_native") is True, (
-            "Navigator getters are not native - stealth instrument should avoid prototype pollution"
-        )
+        assert (
+            results.get("navigator_native") is True
+        ), "Navigator getters are not native - stealth instrument should avoid prototype pollution"
 
         # No OpenWPM globals should be exposed
-        assert results.get("no_global_leaks") is True, (
-            "OpenWPM globals detected (jsInstruments, instrumentFingerprintingApis, etc.)"
-        )
+        assert (
+            results.get("no_global_leaks") is True
+        ), "OpenWPM globals detected (jsInstruments, instrumentFingerprintingApis, etc.)"
 
         # Constructor properties should be preserved
-        assert results.get("constructors_present") is True, (
-            "Constructor properties missing on instrumented objects"
-        )
+        assert (
+            results.get("constructors_present") is True
+        ), "Constructor properties missing on instrumented objects"
 
         # Function.prototype.bind should not be tampered
-        assert results.get("bind_integrity") is True, (
-            "Function.prototype.bind integrity check failed"
-        )
+        assert (
+            results.get("bind_integrity") is True
+        ), "Function.prototype.bind integrity check failed"
 
         # Error stacks should not contain extension URLs
-        assert results.get("clean_error_stacks") is True, (
-            "Error stack traces contain moz-extension:// URLs"
-        )
+        assert (
+            results.get("clean_error_stacks") is True
+        ), "Error stack traces contain moz-extension:// URLs"
 
         # No extra properties added to prototypes
-        assert results.get("no_extra_prototype_properties") is True, (
-            "Extra instrumentation properties found on prototypes"
-        )
+        assert (
+            results.get("no_extra_prototype_properties") is True
+        ), "Extra instrumentation properties found on prototypes"
 
         # RTC functions should appear native
-        assert results.get("rtc_native") is True, (
-            "RTCPeerConnection functions are not native"
-        )
+        assert (
+            results.get("rtc_native") is True
+        ), "RTCPeerConnection functions are not native"
 
     def test_stealth_records_js_calls(self):
         """Verify that the stealth extension actually records JS instrumentation data.
 
         The detection tests above check that stealth is undetectable, but we also
-        need to confirm it is actually capturing API calls to the database.
+        need to confirm it is actually capturing API calls to the database
+        with meaningful data (symbols, operations, values).
         """
         manager_params, browser_params = self._get_stealth_config()
         db_path = manager_params.data_directory / "crawl-data.sqlite"
@@ -219,6 +220,43 @@ def test_stealth_records_js_calls(self):
             "in the javascript table"
         )
 
+        # Verify data quality: rows should have non-empty symbols and operations
+        symbols = {row["symbol"] for row in rows}
+        operations = {row["operation"] for row in rows}
+        assert len(symbols) > 0, "No symbols recorded in JS instrumentation data"
+        assert len(operations) > 0, "No operations recorded in JS instrumentation data"
+
+        # At least some rows should have non-empty values (proving data capture works)
+        rows_with_values = [r for r in rows if r["value"] and r["value"] != ""]
+        assert len(rows_with_values) > 0, (
+            "Stealth extension recorded JS calls but no values — "
+            "error handling may be discarding data"
+        )
+
+    def test_legacy_records_with_call_stacks(self):
+        """Verify that legacy JS instrumentation records calls with full stack traces.
+
+        This serves as a baseline comparison: legacy mode captures call stacks
+        that include extension URLs (which stealth intentionally sanitizes).
+        """
+        manager_params, browser_params = self._get_legacy_config()
+        db_path = manager_params.data_directory / "crawl-data.sqlite"
+        structured_provider = SQLiteStorageProvider(db_path)
+        manager = TaskManager(
+            manager_params,
+            browser_params,
+            structured_provider,
+            None,
+        )
+
+        cs = CommandSequence(STEALTH_DETECTION_URL)
+        cs.get(sleep=2)
+        manager.execute_command_sequence(cs)
+        manager.close()
+
+        rows = db_utils.get_javascript_entries(db_path, all_columns=True)
+        assert len(rows) > 0, "Legacy JS instrumentation did not record any data"
+
     def test_legacy_instrument_is_detectable(self):
         """With legacy JS instrumentation, detection checks should catch it.
 
