Possibly very stupid question ahead: Can't the TPM be emulated?

I think TPMs are designed such that Google only trusts TPMs with private keys inaccessible to users (and bank account stealers, and Netflix downloaders), and which follow the instructions of your bank or Netflix (not the instructions of the user).

Do you have a taobao link for Google trusted TPM chips in reel?

The problem is (I think) you can't get a TPM to tell Google you're running on an unmodified phone (barring hardware mods or TPM exploits) if you have discrepancies from the unmodified phone visible in the CPU's RAM or flash.