crypto: Make one condition more defensive in NSS version of sss_hmac_sha1()
This makes the code more robust in case the if-block is moved to some
other place without the 'if (key_len > HMAC_SHA1_BLOCKSIZE)' check
before.
Reviewed-by: Sumit Bose <sbose@redhat.com>