From a931eff823d923daae35e0a777b7bcf1cfd7279e Mon Sep 17 00:00:00 2001 From: Yishi Wang Date: Wed, 20 Jul 2022 10:56:27 +0800 Subject: [PATCH] [Keyvault] `az keyvault security-domain upload`: Fix `password must be bytes-like` for `--passwords` (#23187) * `az keyvault security-domain upload`: Fix `password must be bytes-like` for `--passwords` * linter --- src/azure-cli/azure/cli/command_modules/keyvault/custom.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/azure-cli/azure/cli/command_modules/keyvault/custom.py b/src/azure-cli/azure/cli/command_modules/keyvault/custom.py index 2230088ccd1..be6edac7585 100644 --- a/src/azure-cli/azure/cli/command_modules/keyvault/custom.py +++ b/src/azure-cli/azure/cli/command_modules/keyvault/custom.py @@ -2421,6 +2421,8 @@ def _security_domain_gen_share_arrays(sd_wrapping_keys, passwords, shared_keys, with open(private_key_path, 'rb') as f: pem_data = f.read() password = passwords[private_key_index] if private_key_index < len(passwords) else None + if password and not isinstance(password, bytes): + password = password.encode(encoding="utf-8") private_key = load_pem_private_key(pem_data, password=password, backend=default_backend()) with open(cert_path, 'rb') as f: