Been working on this for about a year. Background is in low-level Windows and firmware-adjacent stuff, so I kept hitting the "no TPM" wall in ways that felt fixable.

Started with my own 2019 Boot Camp MBP. T2 handles Secure Boot, but Apple never shipped a TPM, so the Win 11 installer, and games that require tpm all fail.

Existing options are for VMs or hypervisors (swtpm, libtpms, hypervisor vTPM); nothing cleanly added a TPM to a real Windows box. fTPM/PTT only exist when the firmware exposes them, and older Intel boards and all the T-series Macs just don't.

FlexTPM works almost like an fTPM from the OS's side.

Plenty of TPM weirdness I can talk about without getting into internals lol