Fix crash in bad signature verification

If the signature existing but too wrong for us to understand, we might not get the hashContext object created, so guard against that.

This is fallout from 08c0766e.

Note the SignHandler does not need the same guards; the hashContext is always present.