Systems, methods, and apparatus for securing virtual machine control structures

What is claimed is: 1. A processor with technology to secure a virtual machine control data structure, the processor comprising: virtualization technology that enables the processor to: execute host software in root mode; and execute guest software in non-root mode in a virtual machine (VM), wherein the VM is based at least in part on a virtual machine control data structure (VMCDS) for the VM; and a root security profile that specifies access restrictions to be imposed when the host software attempts to read the VMCDS in root mode. 2. A processor according to claim 1 , wherein the root security profile provides for a first access restriction for a first part of the VMCDS and a second access restriction for a second part of the VMCDS. 3. A processor according to claim 1 , wherein the access restrictions in the root security profile disallow reading of a guest state area of the VMCDS in root mode. 4. A processor according to claim 1 , further comprising: security control logic to: allow the host software in root mode to read a second-level address translation (SLAT) table for the VM; and prevent the host software in root mode from reading user data for the VM. 5. A processor according to claim 1 , further comprising: an instruction decoder that recognizes a VMCDS read (VRead) instruction that identifies part of the VMCDS; and wherein processor is configured to process a given VRead instruction from the host software by returning an error if the root security profile indicates that the identified part of the VMCDS is not allowed to be read in root mode. 6. A processor according to claim 1 , further comprising: a key-identifier (KeyID) controller to enable the processor to establish a key domain (KD) for the guest software, wherein the KD comprises an area of random access memory (RAM) that a memory manager protects by encrypting data with a key domain key (KDK) before storing that data to that area of RAM. 7. A processor according to claim 6 , wherein the KeyID controller enables the data processing system to: store the VMCDS for the VM in the KD; launch the VM in the KD; and execute the host software outside of the KD. 8. A processor according to claim 6 , wherein the KeyID controller comprises security control logic to: allow the host software in root mode to read a second-level address translation (SLAT) table for the VM from the KD; and prevent the host software in root mode from reading user data for the VM from the KD. 9. A data processing system with technology to secure a virtual machine control data structure, the data processing system comprising: random access memory (RAM); a processor in communication with the RAM; virtualization technology in the processor that enables the processor to: execute host software in root mode; and execute guest software from the RAM in non-root mode in a virtual machine (VM), wherein the VM is based at least in part on a virtual machine control data structure (VMCDS) for the VM; and a root security profile in the processor to specify access restrictions to be imposed when the host software attempts to read the VMCDS in root mode. 10. A data processing system according to claim 9 , further comprising: a memory manager in communication with the RAM; and an encryption engine in the memory manager, wherein the encryption engine enables the processor to establish a key domain (KD) for the guest software, wherein the KD comprises an area of RAM that the memory manager protects by encrypting data with a key domain key (KDK) before storing that data to that area of RAM. 11. A data processing system according to claim 10 , wherein the data processing system does not allow the host software to access the KDK. 12. A data processing system according to claim 10 , wherein the processor enables the data processing system to: store the VMCDS for the VM in the KD; launch the VM in the KD; and execute the host software outside of the KD. 13. A data processing system according to claim 10 , further comprising security control logic in the processor to: allow the host software in root mode to read a second-level address translation (SLAT) table for the VM from the KD; and prevent the host software in root mode from reading user data for the VM from the KD. 14. A data processing system according to claim 13 , wherein the security control logic allows the processor is to use a key identifier (KeyID) for the KDK when the host software reads the SLAT table for the VM from the KD. 15. A data processing system according to claim 9 , wherein the root security profile provides for a first access restriction for a first part of the VMCDS and a second access restriction for a second part of the VMCDS. 16. A data processing system according to claim 9 , wherein the access restrictions in the root security profile disallow reading of a guest state area of the VMCDS in root mode. 17. A method for securing a virtual machine control data structure in a data processing system, the method comprising: establishing a key domain (KD) in random access memory (RAM) of a data processing; loading a virtual machine control data structure (VMCDS) for a virtual machine (VM) into the KD; executing guest software in the VM in the KD in non-root mode; receiving a request from a virtual machine monitor (VMM) executing in root mode in the data processing system, wherein the request involves accessing the VMCDS; in response to receiving the request from the VMM in root mode, automatically using a root security profile to determine whether or not to allow the VMM to access the VMCDS. 18. A method according to claim 17 , wherein the VM comprises a guest VM, the method further comprising: determining, at the VMM, that the VMCDS for the guest VM should be modified; and in response to determining, at the VMM, that the VMCDS for the guest VM should be modified, automatically using an agent VM that executes in the KD to write to the VMCDS for the guest VM, on behalf of the VMM. 19. A method according to claim 18 , further comprising: automatically using a non-root security profile to determine whether or not to allow the agent VM to write to the VMCDS. 20. A method according to claim 19 , further comprising: using a key identifier (KeyID) for the KD to allow the VMM to read a second-level address translation (SLAT) table for the VM from the KD.