I enforced restriction on all apps ( if you don't , apps use JIT ( just in time ) compilation to run code outside their APKs. If you do not restrict its execution , this code can be exploited ( it can be substituted by malicious code ).
Pre-installed apps are always restricted from executing DCL.
TOR performs DCL as it tries to connect , why does TOR need to use "external" code to run ?
Thank you