What are some useful use-cases for eval in Shell?

Question

You hear it a lot eval is evil, whether it's in Shell/POSIX world, or in other langs like python etc...

But I'm wondering, is it actually useless? or is it there some arcane, non-documented, interesting or just useful use-cases for it?

Would prefer if the answer is sh/bash centric, but it's fine if it's about other Shells too.

PS: I'm well aware why eval is considered evil.

Answer 1

I know of two ... common ... use cases for eval:

1. Argument processing with getopt:

   [T]his implementation can generate quoted output which must once again be interpreted by the shell (usually by using the eval command).

2. Setting up an SSH agent:

   [T]he agent prints the needed shell commands (either sh(1) or csh(1) syntax can be generated) which can be evaluated in the calling shell, eg eval `ssh-agent -s` for Bourne-type shells such as sh(1) or ksh(1) and eval `ssh-agent -c` for csh(1) and derivatives.

Both uses might have alternatives, but I wouldn't bat an eyelid on seeing either of them.

Answer 2

To get the last argument in a POSIX shell without extensions like Bash & Co. slicing (i.e. ${@: -1}), one can use

eval "v=\${$#}" 

$# is not subject to nasty tricks, since it is internal to the shell and can only contain the number of arguments to the script/function.

^{I did not come up with that, it was Stéphane Chazelas in a comment. It is also mentioned in this answer to why and when should eval use be avoided?.}

Answer 3

With bash, because Brace Expansion happens before Shell Parameter Expansion:

$ char="F"
$ range=( {A.."$char"} )
$ declare -p range
declare -a range=([0]="{A..F}")
$ eval "range=( {A..$char} )"
$ declare -p range
declare -a range=([0]="A" [1]="B" [2]="C" [3]="D" [4]="E" [5]="F")

Answer 4

Some examples of my own "real-world" use-cases where I couldn't come up with better alternatives and eval just gets the job done neatly.

---

A "conditional-expansion" use-case. Here I want to use a redirection only if $rmsg_pfx has some value:

eval 'printf -- %s%s\\n "$rmsg_pfx" "$line" '"${rmsg_pfx:+>&2}"

I couldn't do it without eval because then the >&2 bit would expand as an argument for printf instead of as its redirection.

I could instead duplicate that line to account for $rmsg_pfx being empty or not, but that would be.. well.. code duplication.

---

Speaking of redirections, and as an "indirection" use-case, I like relying on the {varname}>&... redirection syntax, which I emulate POSIXly like in below:

# equivalent of bash/ksh `exec {rses_fd0}>&- {rses_fd1}<&-` redirection syntax
eval "exec $rses_fd0>&- $rses_fd1<&-"

The above is for closing fds, and likewise I'm doing an analogous indirection for emulating the opening of fds. Obviously $rses_fd0 and $rses_fd1 are script's internal variables, completely under its control from start to end.

---

Sometimes I had to use eval to simply "protect" snippets of shell code meant to target specific shells while not disrupting others.

For instance the piece of code below is from a script which is to be portable (POSIXly) while also embedding a few shell-specific optimizations:

sochars='][ (){}:,!'"'\\"
# NOTE: wrapped in an eval to protect it from dash which croaks over the regex
eval 'o=; while [[ "$s" =~ ([^$sochars]*)([$sochars])(.*) ]]; do
    ...
done'

dash simply chokes on unknown (but direct) syntax at the lexical level, even when such syntax never gets in the actual code-path.

---

Another "protection" use-case, in a different sense. Sometimes I just can't be bothered of having to invent "unlikely" names for save&restore purposes. Such as in the case below where I just want $r's value to be preserved:

# wrapped in eval just to make sure that $r is not overwritten by (the call chain of) coolf
eval '
    coolf "$tmp" || return "$lerrno"'"
    return $r
"

---

I actually use often the trick above to preserve exit statuses from loop-suites while also doing cleanup operations, as in:

    done <&3
    eval "unset ret vals; exec 3<&-; return $?"
}

Or in cases similar to the above, as a "deferred execution":

    done
    # return boolean set by loop while also unsetting it
    eval "unset ok; ${ok:-false}"
}

Note that one implied intention of both snippets above is to not leave "artifacts" from the function execution, especially when the function is meant to be run interactively. For the latter case I could instead do:

[ "${ok:-false}" = false ] && { unset ok; return 1; } || { unset ok; return 0; }

but looks quite rough to me.

---

Finally I had some occasional use-cases where I wanted/needed to amend, or extend, a function just slightly and on a call basis, perhaps for small behavioral changes or to support some hooking from the caller. Like a callback but in an "inline" fashion, which seemed much less cumbersome particularly when the hook snippet needs access to the function's own $@ arguments. Naturally such snippets, fed thru variables to be subsequently eval-ed by the function, are either entirely static/handmade themselves or heavily pre-controlled/sanitized.

Answer 5

One of the real-life usages of eval that I have come across is used in fluxbox.startfluxbox.dbus.diff.gz on Slackware. It looks like this:

# Start DBUS session bus:
if [ -z "$DBUS_SESSION_BUS_ADDRESS" ]; then
   eval $(dbus-launch --sh-syntax --exit-with-session)
fi

And even though this usage of eval hasn't been tested by millions (Slackware is not very common) it does the job. Still, I would do my best to avoid eval in my shell scripts. If I had a feeling I need it, for example to implement arrays or perform variables indirection I'd switch to Bash and if I still felt I need it I'd rethink the script design or switch to a completely different language.

Answer 6

I've only ever used it years ago to make a goto function.

When I moved from Windows to Linux on my desktop, I had a lot of pre-existing .BAT and .CMD files to convert and I wasn't going to rewrite the logic for them, so I found a way to do a goto in bash that works because the goto function runs sed on itself to strip out any parts of the script that shouldn’t run, and then evals it all.

The below source is slightly modified from the original to make it more robust:

#!/bin/bash
BAT / CMD goto function
function goto
{
    label=$1
    cmd=$(sed -n "/^:[[:blank:]][[:blank:]]*${label}/{:a;n;p;ba};" $0 | 
          grep -v ':$')
    eval "$cmd"
    exit
}
apt update
Just for the heck of it: how to create a variable where to jump to:
start=${1:-"start"}
goto "$start"
: start
goto_msg="Starting..."
echo $goto_msg
Just jump to the label:
goto "continue"
: skipped
goto_msg="This is skipped!"
echo "$goto_msg"
: continue
goto_msg="Ended..."
echo "$goto_msg"
following doesn't jump to apt update whereas original does
goto update

and I do not feel guilty at all as Linus Torvalds famously said:

From: Linus Torvalds
Subject: Re: any chance of 2.6.0-test*?
Date: Sun, 12 Jan 2003 11:38:35 -0800 (PST)

I think goto's are fine, and they are often more readable than large amounts of indentation. That's especially true if the code flow isn't actually naturally indented (in this case it is, so I don't think using goto is in any way clearer than not, but in general goto's can be quite good for readability).

Of course, in stupid languages like Pascal, where labels cannot be descriptive, goto's can be bad. But that's not the fault of the goto, that's the braindamage of the language designer.

Original source for the code (modified to make it less error prone)
The source for the quote

It's been a while since I've needed a goto though, as most of these old scripts have been revamped completely by now.

Answer 7

Apart from what others have said, eval can also be used to more easily parse the output of a command, given that the command can output an evalable string. As an example, instead of trying to parse the output of

xdotool getwindowfocus getwindowgeometry

you can pass xdotool the --shell option and just eval the output.

eval "$( xdotool getwindowfocus getwindowgeometry --shell )"

In this case xdotool will output something similar to

WINDOW=46137350
X=1290
Y=559
WIDTH=1258
HEIGHT=509
SCREEN=0

and evaling this output will declare these variables in your shell.

Answer 8

One example where I have seen eval being used is in Environment Modules.

There a bash function is created as a wrapper around the "real" program:

module() { eval `/usr/bin/modulecmd bash $*`; }

Then, when I want to load a module, say gcc/7.2.0, I type

module load gcc/7.2.0

and usr/bin/modulecmd reads the environment and returns a new environment with extended paths:

CPP_INCLUDE_PATH=/nfs/modules/gcc/7.2.0/include:... ;export CPP_INCLUDE_PATH;
C_INCLUDE_PATH=/nfs/modules/gcc/7.2.0/include:... ;export C_INCLUDE_PATH;
LD_LIBRARY_PATH=/nfs/modules/gcc/7.2.0/lib:... ;export LD_LIBRARY_PATH;
LIBRARY_PATH=/nfs/modules/gcc/7.2.0/lib:... ;export LIBRARY_PATH;
...

These are then evaled by the module function so that my environment changes.

Also pyenv uses eval in a similar way; a program produces code for modifying the environment, and this is evaled by a bash function so that the environment changes.

Answer 9

If you were to make a command that takes shell code from the user like e.g. watch then evaling such code seems acceptable.

Answer 10

I end up with 'eval' is a lot of my install scripts and build scripts when I'm doing checks with the file system. This includes things like as bad umasks, mkdir doesn't conform to POSIX, or that there's some race condition. I end up making trees and checking for these conditions as I go along. Here's a chunk out of one of my scripts:

if test -n "$prefixes"; then
    # Don't fail if two instances are running concurrently.
    (umask $mkdir_umask &&
     eval "\$doit_exec \$mkdirprog $prefixes") ||
      test -d "$dstdir" || exit 1
    mkdir_used=true
 fi

There's likely better ways to handle this, but people who are better than I at scripts haven't scolded me for it yet.