Not normal, but completely within the CBSA mandate.We're all familiar with providing passport details to the airline for API. The airline provides this data to the destination country (receiving state) at different intervals prior to flight departure. Many countries also receive API transmissions for outbound flights. This allows (just enough) time for analysis and interdiction prior to departure of any targeted travellers.
Or, CBSA could simply ask questions of every traveller.