> I think that code should check for *NTE_BAD_KEYSET* and if this is true > flag *CRYPT_NEWKEYSET* should be used to create a new key container. > > Is this true and/or is there any other way aroud it? This sounds reasonable though one can argue that keyset might be created "in advance" by the user :) Anyway, I do accept patches :) Aleksey