The idea is quite simple, and all the pieces should already be there - but what is, IMO, lacking is putting them all together:
- take the TMP ownership,
- put your own keys inside,
- use them to sign the bootloader,
- use TPM to unlock encrypted /boot and / partitions.
The outcome would be at least a nice, step-by-step instructions on how to do it all.
This project is one of its kind!