Misleading and ambiguous description for creating a new pool with encryption

TrueNAS CORE 12.0-U5.1

There continues to exist a misleading text dialog that explains the "Encryption" feature upon creating a new pool.

With FreeNAS 11.3 and earlier, creating a new pool with "Encryption" essentially encrypts the underlying block devices (i.e, "disks" and "partitions") with GELI, and hence disconnecting the disks and/or wiping the GELI key renders the data forever irrecoverable.

With TrueNAS CORE / SCALE and beyond, GELI is no longer used during the creation of a new pool, but rather TrueNAS leverages ZFS's native encryption which happens at the dataset level.

Neither the pool nor the disks are encrypted.

The pop-up dialog is misleading in that it refers to the "disks" being encrypted. (See attached photo.)

This is not true. Neither is the claim that the pool is encrypted, as the reality is only the top-level root dataset (which shares the same name as the pool) is encrypted .

By default , newly created child datasets can inherit this encryption; however, the user is free to break this inheritance at any lower level in the hierarchy.

Snapshots and datasets transferred to this pool can also remain non-encrypted.

Here is a forum thread that illustrates this confusion and why it can be viewed as misleading information to the end-user that wishes to protect their data with encryption:

https://www.truenas.com/community/threads/unencrypted-snapshot-on-encrypted-pool.95360/

Key points that should be explained and addressed in the popup dialog:

Selecting this option encrypts the top-level root dataset
Newly created child datasets will default to inheriting this encryption
However, this can be overridden during the creation of a child dataset
Replications to this pool can still be in the form of non-encrypted datasets
A mix of encrypted and non-encrypted datasets can live on the same pool
Neither the disks nor the entire pool is outright encrypted by selecting this option (for the reasons explained above)