chroot is hard. sftp-server will do chrooting at some point. probably not to $HOME by default, but to $HOME/subdir, because otherwise manipulation of .ssh and .forward is possible. sshd will not do chrooting, because setting up a chroot-env in $HOME is a nightmare.