User Guide

This guide explains how to use the three main Morpheus capabilities:

• Privacy Compute
• Privacy Oracle
• PriceFeed / DataFeed

It also explains how to inspect supported built-in providers and feed pairs.

Important production rule:

• End users should use Oracle and Compute through the on-chain Morpheus Oracle contracts plus callback fulfillment.
• The direct HTTP routes in this guide are for local development, operator workflows, and payload debugging.
• text

  datafeed

  sync is operator-only. User contracts read synchronized on-chain feed records directly.
• Each request currently costs
  text

  0.01 GAS

  -equivalent.
• Neo N3 supports prepaid fee credits, including contract-sponsored payment.
• Neo X requires the exact fee in
  text

  msg.value

  .

1. Concepts

Privacy Compute

Use Morpheus as an off-chain trusted coprocessor for expensive logic that is not practical on-chain.

Typical cases:

• ZKP preprocessing or witness hashing
• FHE planning and parameter estimation
• matrix / vector operations
• custom script execution in the TEE

Privacy Oracle

Use Morpheus when you need to fetch external data and optionally process it inside the TEE before returning a derived result.

Typical cases:

• fetch a private API using an encrypted secret
• run a script on sensitive API output
• return only a boolean / score / filtered result on-chain

PriceFeed / DataFeed

Use Morpheus datafeeds as operator-synchronized on-chain price storage that user contracts read directly.

Important properties:

• all feed pairs are normalized to
  text

  *-USD

• Morpheus does not aggregate or medianize providers
• each provider is stored independently on-chain as
  text

  PROVIDER:PAIR

• prices are stored as scaled USD integers with global precision
  text

  1 USD = 1,000,000

• threshold checks are evaluated against the quantized on-chain integer price, not unbounded source decimals
• example storage pairs:
  • text

    TWELVEDATA:NEO-USD

  • text

    BINANCE-SPOT:NEO-USD

2. Privacy Compute Usage

These direct

/compute/*

Built-in functions

List built-ins:

bash
curl http://localhost:3000/api/compute/functions

Or call the worker directly:

bash
curl "$PHALA_API_URL/compute/functions" \
  -H "Authorization: Bearer $PHALA_API_TOKEN"

Built-in examples:

json
{
  "mode": "builtin",
  "function": "zkp.public_signal_hash",
  "input": {
    "signals": ["1", "2", "3"]
  },
  "target_chain": "neo_n3"
}

json
{
  "mode": "builtin",
  "function": "fhe.noise_budget_estimate",
  "input": {
    "multiplicative_depth": 3,
    "scale_bits": 40,
    "modulus_bits": 218
  },
  "target_chain": "neo_x"
}

Call through web API:

bash
curl http://localhost:3000/api/compute/execute \
  -H 'content-type: application/json' \
  -d '{
    "mode":"builtin",
    "function":"zkp.public_signal_hash",
    "input":{"signals":["1","2","3"]},
    "target_chain":"neo_n3"
  }'

Custom script compute

Example:

json
{
  "mode": "script",
  "script": "function run(input) { return input.a + input.b; }",
  "entry_point": "run",
  "input": { "a": 2, "b": 3 },
  "target_chain": "neo_n3"
}

Important notes:

• script execution is time-limited
• invalid entry points are rejected
• use built-ins whenever possible for stable semantics

Confidential compute payloads

If you want the function name, script, or inputs to stay encrypted until they reach the TEE, fetch the Oracle public key first and encrypt a JSON payload patch.

Example confidential builtin call:

json
{
  "encrypted_payload": "<encrypt({\"mode\":\"builtin\",\"function\":\"math.modexp\",\"input\":{\"base\":\"2\",\"exponent\":\"10\",\"modulus\":\"17\"},\"target_chain\":\"neo_n3\"})>"
}

The worker decrypts that JSON object inside the TEE, merges it into the request, executes it, and returns the callback-ready result envelope.

3. Privacy Oracle Usage

These direct

/oracle/*

There are two main paths.

A. Built-in provider mode

Use a built-in provider such as

twelvedata

binance-spot

coinbase-spot

twelvedata

Example:

json
{
  "provider": "twelvedata",
  "symbol": "NEO-USD",
  "json_path": "price",
  "target_chain": "neo_n3"
}

Request via web API:

bash
curl http://localhost:3000/api/oracle/query \
  -H 'content-type: application/json' \
  -d '{
    "provider":"twelvedata",
    "symbol":"NEO-USD",
    "json_path":"price",
    "target_chain":"neo_n3"
  }'

B. Custom URL mode

Use a custom URL with optional encrypted secrets and optional script.

Example:

json
{
  "url": "https://api.example.com/private",
  "method": "GET",
  "headers": {},
  "encrypted_token": "<base64 ciphertext>",
  "encrypted_params": "<base64 ciphertext with secret headers/body/provider params/script>",
  "token_header": "Authorization",
  "script": "function process(data) { return data.score > 80; }",
  "target_chain": "neo_x"
}

Request via web API:

bash
curl http://localhost:3000/api/oracle/smart-fetch \
  -H 'content-type: application/json' \
  -d '{
    "url":"https://api.example.com/private",
    "encrypted_token":"<base64 ciphertext>",
    "encrypted_params":"<base64 ciphertext with secret headers/body/provider params/script>",
    "token_header":"Authorization",
    "script":"function process(data) { return data.score > 80; }",
    "target_chain":"neo_x"
  }'

Important notes:

• text

  encrypted_token

  is the cleanest choice when only an auth secret must stay private
• text

  encrypted_params

  ,
  text

  encrypted_input

  , or a JSON-object
  text

  encrypted_payload

  can carry confidential headers, provider params, compute input, function names, or scripts
• Morpheus confidential payloads are sealed with
  text

  X25519-HKDF-SHA256-AES-256-GCM

• the encrypted envelope includes an ephemeral X25519 public key plus AES-GCM ciphertext/tag fields

Oracle public key

To encrypt user secrets locally, fetch the Oracle public key first:

bash
curl http://localhost:3000/api/oracle/public-key

or directly from worker:

bash
curl "$PHALA_API_URL/oracle/public-key" \
  -H "Authorization: Bearer $PHALA_API_TOKEN"

Returned fields:

• text

  algorithm

• text

  public_key

• text

  public_key_format

• text

  key_source

• text

  recommended_payload_encryption

• text

  supported_payload_encryption

4. PriceFeed / DataFeed Usage

Query supported feed pairs

From web API:

bash
curl http://localhost:3000/api/feeds/catalog

From worker directly:

bash
curl "$PHALA_API_URL/feeds/catalog" \
  -H "Authorization: Bearer $PHALA_API_TOKEN"

Current default pair catalog includes:

• Core crypto:
  • text

    NEO-USD

  • text

    GAS-USD

  • text

    FLM-USD

  • text

    BTC-USD

  • text

    ETH-USD

  • text

    SOL-USD

  • text

    TRX-USD

  • text

    BNB-USD

  • text

    XRP-USD

  • text

    DOGE-USD

  • text

    USDT-USD

  • text

    USDC-USD

• Commodity / hard-asset:
  • text

    PAXG-USD

  • text

    WTI-USD

  • text

    BRENT-USD

  • text

    NATGAS-USD

  • text

    COPPER-USD

  • text

    WHEAT-USD

  • text

    CORN-USD

  • text

    SOY-USD

• Equities / ETFs:
  • text

    AAPL-USD

  • text

    GOOGL-USD

  • text

    MSFT-USD

  • text

    AMZN-USD

  • text

    TSLA-USD

  • text

    META-USD

  • text

    NVDA-USD

  • text

    SPY-USD

  • text

    QQQ-USD

  • text

    GLD-USD

• FX:
  • text

    EUR-USD

  • text

    GBP-USD

  • text

    JPY-USD

    (inverted from
    text

    USD/JPY

    )
  • text

    CNY-USD

    (inverted from
    text

    USD/CNY

    )

With the global

1 USD = 1,000,000

FLM-USD

DOGE-USD

JPY-USD

For the exact meaning of every canonical pair, including the real TwelveData source symbol and any inversion / scaling rule, read the canonical pair table in

docs/PROVIDERS.md

Important deprecation note:

• historical basket keys such as
  text

  TWELVEDATA:1000FLM-USD

  and
  text

  TWELVEDATA:1000JPY-USD

  can still exist on-chain because the datafeed registry is append-only
• treat those basket keys as deprecated historical state
• use
  text

  TWELVEDATA:FLM-USD

  and
  text

  TWELVEDATA:JPY-USD

  in all new code

Query current off-chain quotes

Single provider:

bash
curl "http://localhost:3000/api/feeds/NEO-USD?provider=twelvedata"

All available built-in providers for the pair:

bash
curl "http://localhost:3000/api/feeds/NEO-USD"

This returns:

• text

  pair

• text

  providers_requested

• text

  quotes

• text

  errors

If multiple providers are requested, every successful quote is returned and every failed provider is listed in

errors

twelvedata

MORPHEUS_FEED_PROVIDERS

Trigger an on-chain feed sync

This flow is operator-only. End users should not request

datafeed

Web cron route:

bash
curl http://localhost:3000/api/cron/feed \
  -H "Authorization: Bearer $CRON_SECRET"

Direct worker route:

bash
curl "$PHALA_API_URL/oracle/feed" \
  -H "Authorization: Bearer $PHALA_API_TOKEN" \
  -H 'content-type: application/json' \
  -d '{
    "symbol":"NEO-USD",
    "target_chain":"neo_n3",
    "providers":["twelvedata"],
    "sync_all_sources":true,
    "wait":true
  }'

Returned fields:

• text

  pair

• text

  providers_requested

• text

  sync_results

• text

  errors

Each successful sync result contains:

• text

  provider

• text

  storage_pair

• text

  relay_status

• text

  anchored_tx

• text

  quote

On-chain storage model

For N3 and Neo X, providers are stored separately.

Examples:

• text

  TWELVEDATA:NEO-USD

• text

  BINANCE-SPOT:NEO-USD

This means contracts can choose:

• one specific provider pair
• all stored pairs
• all feed records
• a price format that is always a 1e6-scaled USD integer, for example
  text

  2490000

  =
  text

  2.490000

New on-chain DataFeed read methods

Neo N3

• text

  GetLatest(pair)

• text

  GetPairCount()

• text

  GetPairByIndex(index)

• text

  GetAllPairs()

• text

  GetAllFeedRecords()

Neo X

• text

  getLatest(pair)

• text

  getPairCount()

• text

  getPairByIndex(index)

• text

  getAllPairs()

• text

  getAllFeedRecords()

5. Mainnet Update Policy for Neo N3

For Neo N3 mainnet, automatic feed sync obeys two rules:

1. the same price pair is updated only if the fresh quote moved by more than 0.1% versus the current on-chain stored value
2. the same storage pair is updated at most once every 60 seconds

Precision caveat:

• because the chain stores quantized integers, a raw source move that is still too small to change the stored on-chain integer value cannot trigger an update, even if that raw source move is already greater than
  text

  0.1%

• with the current
  text

  1 USD = 1,000,000

  scale, the standard catalog can use direct pairs such as
  text

  FLM-USD

  and
  text

  JPY-USD

  without basket naming

These rules apply per stored provider pair, for example:

• text

  TWELVEDATA:NEO-USD

• text

  BINANCE-SPOT:NEO-USD

So one provider can update while another provider is skipped.

6. Built-in Provider Support

Current built-in providers:

• text

  twelvedata

• text

  binance-spot

• text

  coinbase-spot

To inspect provider metadata:

bash
curl http://localhost:3000/api/providers

or:

bash
curl "$PHALA_API_URL/providers" \
  -H "Authorization: Bearer $PHALA_API_TOKEN"

7. How to Add New Pairs Later

There are two levels.

Simple level: add symbols only

Set:

• text

  MORPHEUS_FEED_SYMBOLS

Example:

env
MORPHEUS_FEED_SYMBOLS=NEO-USD,GAS-USD,FLM-USD,BTC-USD,ETH-USD,SOL-USD,WTI-USD,AAPL-USD,EUR-USD,JPY-USD

Advanced level: add provider-specific mapping

Set:

• text

  MORPHEUS_FEED_PAIR_REGISTRY_JSON

Example:

json
{
  "DOGE-USD": {
    "providers": {
      "twelvedata": { "symbol": "DOGE/USD" },
      "binance-spot": { "symbol": "DOGEUSDT" }
    }
  }
}

This is the correct place to add pairs whose provider symbols differ from the normalized

PAIR-USD

8. Practical Recommendations

• use
  text

  privacy oracle

  when you need fetch + optional secret + optional compute
• use
  text

  privacy compute

  when you do not need an external fetch
• use
  text

  pricefeed

  for standardized public market data storage
• for contracts, prefer provider-scoped storage pairs like
  text

  TWELVEDATA:NEO-USD

• if you need all currently stored feed pairs, use
  text

  GetAllPairs()

  /
  text

  getAllPairs()