I finally managed to get tboot working in a way that makes sense to me. For
those unfamiliar, tboot uses Intel's Trusted eXecution Technology to invoke a
dynamic root of trust and then measure all the components you boot with (eg
kernel and initrd). What took me ages to figure out was how one can upgrade
kernels while keeping this chain working.