Only call redirected rsa_sign or rsa_verify if the pointer is set.

This allows, for example, a smart card to redirect rsa_sign and keep
the default rsa_verify.