cert: Fix encoding of password

unit_tests/utilities/test_zaza_utilities_cert.py

@@ -100,7 +100,8 @@ class TestUtilitiesCert(ut_utils.BaseTestCase):
         self.patch_object(cert, 'rsa')
         self.patch_object(cert, 'cryptography')
         cert.generate_cert('unit_test.ci.local', password='secret')
-        self.serialization.BestAvailableEncryption.assert_called_with('secret')
+        self.serialization.BestAvailableEncryption.assert_called_with(
+            b'secret')
         self.cryptography.x509.NameAttribute.assert_called_with(
             self.cryptography.x509.oid.NameOID.COMMON_NAME,
             'unit_test.ci.local',
@@ -163,7 +164,7 @@ class TestUtilitiesCert(ut_utils.BaseTestCase):
         self.assertTrue(self.serialization.NoEncryption.called)
         self.serialization.load_pem_private_key.assert_called_with(
             'signing_key',
-            password='signing_key_password',
+            password=b'signing_key_password',
             backend=self.cryptography.hazmat.backends.default_backend(),
         )
         self.cryptography.x509.NameAttribute.assert_called_with(

zaza/utilities/cert.py

@@ -58,11 +58,14 @@ def generate_cert(common_name,
     :rtype: cryptography.x509.Certificate
     """
     if password is not None:
-        encryption_algorithm = serialization.BestAvailableEncryption(password)
+        encryption_algorithm = serialization.BestAvailableEncryption(
+            password.encode('utf-8'))
     else:
         encryption_algorithm = serialization.NoEncryption()
 
     if signing_key:
+        if signing_key_password:
+            signing_key_password = signing_key_password.encode('utf-8')
         _signing_key = serialization.load_pem_private_key(
             signing_key,
             password=signing_key_password,