@lattera I've wondered about this myself. What you wrote sounds logical to me, and I'm inclined to agree. That said, it's not at all my territory.
About as close as I get is asking, "Why in the bleep does this package/project depend on anything more than libc, libm, and libressl?" ... Or like a ruby project depending on like 10 million gems that I've never read the code for
Unrelated perhaps but just a thought or two.
Trump's conception proves the failure of abstinence-only education: https://medium.com/@RVAwonk/leaked-white-house-memo-outlines-plans-for-all-out-war-on-womens-health-531cc14f2623
LineageOS beats Google to the punch, fixes 'KRACK' WPA2 vulnerability in Android http://www.androidpolice.com/2017/10/18/lineageos-beats-google-punch-fixes-krack-wpa2-vulnerability-android/
So here's my dilemma: I'm tired as heck, but my brain just figured something really cool out. In order for me to implement that thing, I'd have to go into work. I'm unsure whether I'll be able to sleep until I do the thing. But I desperately need sleep.
I really dislike it when organizations I do business with use unusual domain names in their emails.
So I've published my #Tor #Capsicum work-in-progress. There's still a whole freakton of stuff to do, but at least it's open now: https://github.com/lattera/tor/tree/hardening/capsicum