Processors, methods, systems, and instructions to support live migration of protected containers

What is claimed is: 1. An apparatus including at least one chip, the apparatus comprising: decode circuitry to decode an instruction; circuitry, based on the instruction, to access a control structure, the control structure to store a plurality of cryptographic keys capable of being migrated from a source computer system to a destination computer system; cryptographic circuitry, based on the instruction, to: decrypt a copy of data with a first cryptographic key, the data to be within an encrypted portion of a virtual machine, wherein the apparatus is to protect the data within the encrypted portion of the virtual machine from being disclosed to a virtual machine monitor; and generate encrypted data, based on the decrypted copy of the data, with a second, different cryptographic key; and a memory controller, based on the instruction, to store the encrypted data generated by the cryptographic circuitry to a memory location outside of the encrypted portion of the virtual machine, wherein the apparatus is to leave the data within the encrypted portion of the virtual machine valid and readable, after the encrypted data has been stored to the memory location outside of the encrypted portion of the virtual machine. 2. The apparatus of claim 1 , wherein the decode circuitry is to decode the instruction that is to implicitly indicate a register, the register to store instruction specification information for the instruction. 3. The apparatus of claim 1 , wherein the memory controller, based on the instruction, is to store the encrypted data generated by the cryptographic circuitry to the memory location outside of the encrypted portion of the virtual machine, as part of a migration of the virtual machine from the source computer system to the destination computer system. 4. The apparatus of claim 1 , wherein the second cryptographic key is one of the plurality of cryptographic keys capable of being migrated from the source computer system to the destination computer system. 5. An apparatus including at least one chip, the apparatus comprising: a decode unit to decode an instruction; a circuit to access a control structure in response to the instruction, the control structure to store a second cryptographic key capable of being migrated from a source computer system to a destination computer system; a cryptographic circuitry, in response to the instruction, to: decrypt a copy of data with a first cryptographic key, the data to be within an encrypted portion of a virtual machine, wherein the apparatus is to protect the data within the encrypted portion of the virtual machine from being disclosed to a virtual machine monitor; and generate encrypted data based on the decrypted copy of the data with the second cryptographic key; and a memory controller, in response to the instruction, to store the encrypted data generated by the cryptographic circuitry to a memory location outside of the encrypted portion of the virtual machine, wherein the apparatus is to leave the data within the encrypted portion of the virtual machine valid and readable after the encrypted data has been stored to the memory location outside of the encrypted portion of the virtual machine. 6. The apparatus of claim 5 , wherein the decode unit is to decode the instruction that is to implicitly indicate a register, the register to store instruction specification information for the instruction. 7. The apparatus of claim 5 , wherein the apparatus is to perform message authentication code computations based on the copy of the data in response to the instruction. 8. The apparatus of claim 5 , wherein the memory controller, in response to the instruction, is to store the encrypted data generated by the cryptographic circuitry to the memory location outside of the encrypted portion of the virtual machine, as part of a migration of the virtual machine from the source computer system to the destination computer system.