add TPM tooling for tpm-enabled machines

roles/development/tasks/main.yml

@@ -120,6 +120,7 @@
     - syslinux
     - syslinux-efi
     - syslinux-utils
+    - vboot-utils
     - whois
 
 - name: install container and virtualisation management

roles/tpm/tasks/main.yml

@@ -0,0 +1,15 @@
+- name: check whether the TPM is available
+  ansible.builtin.stat:
+    path: /dev/tpm0
+  register: tpm_available
+
+- name: install TPM tooling
+  when: tpm_available
+  become: true
+  ansible.builtin.apt: name={{ item }} state=exists
+  with_items:
+    - clevis-tpm2
+    - tpm2-initramfs-tool
+    - tpm2-openssl
+    - tpm2-tools
+    - tss2