What does $$ mean in the shell?

shell scripting

I once read that one way to obtain a unique filename in a shell for temp files was to use a double dollar sign ($$). This does produce a number that varies from time to time... but if you call it repeatedly, it returns the same number. (The solution is to just use the time.)

I am curious to know what $$ actually is, and why it would be suggested as a way to generate unique filenames.


$$ is the process ID (PID) in bash. Using $$ is a bad idea, because it will usually create a race condition, and allow your shell-script to be subverted by an attacker. See, for example, all these people who created insecure temporary files and had to issue security advisories.

Instead, use mktemp. The Linux man page for mktemp is excellent. Here's some example code from it:

tempfoo=`basename $0`
TMPFILE=`mktemp -t ${tempfoo}` || exit 1
echo "program output" >> $TMPFILE

In Bash $$ is the process ID, as noted in the comments it is not safe to use as a temp filename for a variety of reasons.

For temporary file names, use the mktemp command.


$$ is the id of the current process.


Every process in a UNIX like operating system has a (temporarily) unique identifier, the PID. No two processes running at the same time can have the same PID, and $$ refers to the PID of the bash instance running the script.

This is very much not a unique idenifier in the sense that it will never be reused (indeed, PIDs are reused constantly). What it does give you is a number such that, if another person runs your script, they will get a different identifier whilst yours is still running. Once yours dies, the PID may be recycled and someone else might run your script, get the same PID, and so get the same filename.

As such, it is only really sane to say "$$ gives a filename such that if someone else runs the same script whist my instance is still running, they will get a different name".


$$ is your PID. It doesn't really generate a unique filename, unless you are careful and no one else does it exactly the same way.

Typically you'd create something like /tmp/myprogramname$$

There're so many ways to break this, and if you're writing to locations other folks can write to it's not too difficult on many OSes to predict what PID you're going to have and screw around -- imagine you're running as root and I create /tmp/yourprogname13395 as a symlink pointing to /etc/passwd -- and you write into it.

This is a bad thing to be doing in a shell script. If you're going to use a temporary file for something, you ought to be using a better language which will at least let you add the "exclusive" flag for opening (creating) the file. Then you can be sure you're not clobbering something else.

Related

How to set environment variable for everyone under my linux system?
Scalar vs. primitive data type - are they the same thing?
JSON, REST, SOAP, WSDL, and SOA: How do they all link together
SQL Server equivalent to MySQL enum data type?
Difference between Django's annotate and aggregate methods?
Check if Key Exists in NameValueCollection
What is the difference between json.dumps and json.load? [closed]
How to get the currently logged in user's user id in Django?
Java Spring Boot: How to map my app root (“/”) to index.html?
What is the equivalent of Java static final fields in Kotlin?
How to save traceback / sys.exc_info() values in a variable?
How do I get an HttpContext object from HttpContextBase in ASP.NET MVC 1?