Part of the problem was that they were (are?) using their own memory allocator, which was not only had been the source of many security vulnerabilities, but also broke Valgrind!

That was one of the first things the LibreSSL team ripped out.