Skip to main content
Zakk
Gentoo Linux Installation Guide (Base)
  1. Posts/

Gentoo Linux Installation Guide (Base)

··24 mins· loading · ·
Zakkaus
Tutorial Gentoo Linux Tutorial System Installation
Zakk
Author
Zakk
Studying business in Australia, having a long-distance relationship with Paper, raising potatoes and hash browns, and writing Linux notes and life journals.
Table of Contents

Special Note
#

This article is the first part of the Gentoo Linux Installation Guide series: Base Installation.

Series Navigation:

  1. Base Installation (This Article): Install Gentoo base system from scratch
  2. Desktop Configuration: Graphics drivers, Desktop Environments, Input methods, etc.
  3. Advanced Optimization: make.conf optimization, LTO, System maintenance

Recommended Reading Path:

  • Read as needed: Base Installation (Sections 0-11) → Desktop Configuration (Section 12) → Advanced Optimization (Sections 13-17)

About This Guide
#

This article aims to provide a complete Gentoo installation process demonstration and intensively provides references for learning. The guide contains numerous official Wiki links and technical documents to help readers deeply understand the principles and configuration details of each step.

This is not just a simple step-by-step tutorial, but a guiding learning resource — the first step in using Gentoo is learning to read the Wiki and solve problems yourself, and making good use of Google or AI tools to find answers. When encountering problems or needing in-depth understanding, please be sure to consult the official handbook and the reference links provided in this article.

If you have questions or find issues during reading, welcome to raise them through the following channels:

Highly recommended to follow the official handbook:

✓ Verified as of November 25, 2025

What is Gentoo?
#

Gentoo Linux is a source-based Linux distribution known for its high customizability and performance optimization. Unlike other distributions, Gentoo lets you compile all software from source code, which means:

  • Extreme Performance: All software is optimized and compiled for your hardware
  • Total Control: You decide what the system contains and what it doesn't
  • Deep Learning: Deeply understand Linux by building the system yourself
  • Compilation Time: Initial installation takes a long time (Recommended to reserve 3-6 hours)
  • Learning Curve: Requires some basic Linux knowledge

Who is it for?

  • Tech enthusiasts who want to learn Linux deeply
  • Users pursuing system performance and customization
  • Geeks who enjoy the DIY process

Who is it not for?

  • Beginners who update want to install and use quickly (Recommended to try Ubuntu, Fedora first)
  • Users who don't have time to tinker with the system
Core Concepts at a Glance (Click to expand)

Before starting installation, understand a few core concepts:

Stage3 (Wiki) A minimal Gentoo base system archive. It contains the basic toolchain (compiler, libraries, etc.) for building a complete system. You will unpack it to the hard drive as the "foundation" of the new system.

Portage (Wiki) Gentoo's package management system. It doesn't install pre-compiled packages directly, but downloads source code, compiles it according to your configuration, and then installs it. The core command is emerge.

USE Flags (Wiki) Switches that control software features. For example, USE="bluetooth" will enable Bluetooth functionality during compilation for all software that supports it. This is the core of Gentoo customization.

Profile (Wiki) Default system configuration template. For example, desktop/plasma/systemd profile will automatically enable default USE flags suitable for KDE Plasma desktop.

Emerge (Wiki) Portage's command-line tool. Common commands:

  • emerge --ask <package_name> - Install software
  • emerge --sync - Sync software repository
  • emerge -avuDN @world - Update the entire system
Installation Time Estimate (Click to expand)
StepEstimated Time
Prepare Installation Media10-15 mins
Disk Partitioning & Formatting15-30 mins
Download & Unpack Stage35-10 mins
Configure Portage & Profile15-20 mins
Compile Kernel (Most time-consuming)30 mins - 2 hours
Install System Tools20-40 mins
Configure Bootloader10-15 mins
Install Desktop Environment (Optional)1-3 hours
Total3-6 hours (Depends on hardware performance)

Tip

Using pre-compiled kernels and binary packages can significantly reduce time, but will sacrifice some customizability.

Disk Space Requirements & Pre-start Checklist (Click to expand)

Disk Space Requirements
#

  • Minimal Install: 10 GB (No desktop environment)
  • Recommended Space: 30 GB (Lightweight desktop)
  • Comfortable Space: 80 GB+ (Full desktop + compilation cache)

Pre-start Checklist
#

  • Backed up all important data
  • Prepared an 8GB+ USB flash drive
  • Confirmed stable network connection (Wired is best)
  • Reserved enough time (Recommended a full half-day)
  • Have some basic Linux command line knowledge
  • Prepared another device to consult documentation (Or use GUI LiveCD)

Guide Content Overview
#

This guide will lead you to install Gentoo Linux on x86_64 UEFI platform.

This article will teach you:

  • Install Gentoo base system from scratch (Partitioning, Stage3, Kernel, Bootloader)
  • Configure Portage and optimize compilation flags (make.conf, USE flags, CPU flags)
  • Enable Binary Package Host (Significantly reduce installation time)
  • Install Desktop Environment (KDE Plasma, GNOME, Hyprland)
  • Configure Localization (language, fonts, input method)
  • Optional Advanced Configuration (LUKS full disk encryption, Secure Boot, LTO optimization, Kernel tuning, RAID)
  • System Maintenance (SSD TRIM, Power Management, Flatpak, System Update)

Important Reminder

Please Disable Secure Boot First: Before starting installation, be sure to enter BIOS settings and temporarily disable Secure Boot. Enabling Secure Boot may cause installation media unable to boot, or installed system unable to boot. You can reconfigure and enable Secure Boot after system installation is complete.

Backup All Important Data!: This guide involves disk partitioning operations, please be sure to backup all important data before starting!

0. Prepare Installation Media
#

0.1 Download Gentoo ISO
#

Get download links from the Download Page and Mirror List.

Note

The dates in the following links (e.g., 20251123T...) are for reference only, please be sure to select the latest date file in the mirror site.

Download Minimal ISO (Select a mirror near you):

Visit a mirror site to find the latest ISO (select directory with latest date):

# Global / Generic Mirror:
# http://distfiles.gentoo.org/releases/amd64/autobuilds/

# Or select a mirror close to your location from:
# https://www.gentoo.org/downloads/mirrors/

Download example (replace YYYYMMDDTHHMMSSZ with the latest date found):

# Download ISO and Signature:
wget https://distfiles.gentoo.org/releases/amd64/autobuilds/YYYYMMDDTHHMMSSZ/install-amd64-minimal-YYYYMMDDTHHMMSSZ.iso
wget https://distfiles.gentoo.org/releases/amd64/autobuilds/YYYYMMDDTHHMMSSZ/install-amd64-minimal-YYYYMMDDTHHMMSSZ.iso.asc

Beginner Recommendation: Use LiveGUI USB Image

If you prefer using a browser directly or connecting to Wi-Fi more conveniently during installation, you can choose the official Gentoo LiveGUI USB Image.

This image provides a graphical desktop environment which makes it easier to:

  • Connect to Wi-Fi networks
  • Browse documentation during installation
  • Use multiple terminal windows

Check the official Gentoo downloads page for the latest LiveGUI images.

Verify Signature (Optional):

# Get Gentoo Release Signing Key
gpg --keyserver hkps://keys.openpgp.org --recv-keys 0xBB572E0E2D1829105A8D0F7CF7A88992
# --keyserver: Specify keyserver address
# --recv-keys: Receive and import public key
# 0xBB...992: Gentoo Release Media Signing Key Fingerprint

# Verify ISO file digital signature
gpg --verify install-amd64-minimal-20251123T153051Z.iso.asc install-amd64-minimal-20251123T153051Z.iso
# --verify: Verify signature file
# .iso.asc: Signature file (ASCII armored)
# .iso: ISO file to be verified

0.2 Create USB Installation Drive
#

Linux:

sudo dd if=install-amd64-minimal-20251123T153051Z.iso of=/dev/sdX bs=4M status=progress oflag=sync
# if=Input File of=Output Device bs=Block Size status=Show Progress

Tip

Please replace sdX with your USB device name, e.g., /dev/sdb.

Windows: Recommended to use Rufus → Select ISO → Select DD mode when writing.

1. Enter Live Environment and Connect Network
#

Why this step?

Gentoo installation process relies completely on network to download source packages (Stage3) and software repository (Portage). Configuring network in Live environment is the first step.

1.1 Wired Network
#

ip link        # View network interface names (e.g. eno1, wlan0)
dhcpcd eno1    # Enable DHCP for wired interface to auto-get IP
ping -c3 gentoo.org # Test connectivity

1.2 Wireless Network
#

Use net-setup:

net-setup

wpa_supplicant:

wpa_passphrase "SSID" "PASSWORD" | tee /etc/wpa_supplicant/wpa_supplicant.conf
wpa_supplicant -B -i wlp0s20f3 -c /etc/wpa_supplicant/wpa_supplicant.conf
dhcpcd wlp0s20f3

Note

If WPA3 is unstable, please fallback to WPA2.

Advanced Setting: Start SSH for Remote Operation (Click to expand)
passwd                      # Set root password (required for remote login)
rc-service sshd start       # Start SSH service
rc-update add sshd default  # Set SSH auto-start (Optional in Live environment)
ip a | grep inet            # View current IP address
# On another device: ssh root@<IP>

2. Plan Disk Partitioning
#

Why this step?

We need to divide independent storage space for the Linux system. UEFI systems usually need an ESP partition (Boot) and a Root partition (System). Reasonable planning makes future maintenance easier.

What is EFI System Partition (ESP)?
#

When installing Gentoo on a system booted by UEFI (instead of BIOS), creating an EFI System Partition (ESP) is necessary. ESP must be a FAT variant. Official UEFI specification states UEFI firmware will recognize FAT12, 16 or 32 filesystems, but FAT32 is recommended.

Warning If ESP is not formatted using a FAT variant, the system's UEFI firmware will not find the bootloader (or Linux kernel) and will likely fail to boot the system!

Recommended Partition Scheme (UEFI)#

The table below provides a recommended default partition table for Gentoo installation.

Device PathMount PointFilesystemDescription
/dev/nvme0n1p1/efivfatEFI System Partition (ESP)
/dev/nvme0n1p2swapswapSwap Partition
/dev/nvme0n1p3/xfsRoot Partition

cfdisk Practical Example (Recommended)#

cfdisk is a graphical partition tool, simple and intuitive to operate.

cfdisk /dev/nvme0n1

Operation Tips:

  1. Select GPT label type.
  2. Create ESP: New partition -> Size 1G -> Type select EFI System.
  3. Create Swap: New partition -> Size 4G -> Type select Linux swap.
  4. Create Root: New partition -> Remaining space -> Type select Linux filesystem (Default).
  5. Select Write to write changes, type yes to confirm.
  6. Select Quit to exit.
                                                                 Disk: /dev/nvme0n1
                                              Size: 931.51 GiB, 1000204886016 bytes, 1953525168 sectors
                                            Label: gpt, identifier: 9737D323-129E-4B5F-9049-8080EDD29C02

    Device                                     Start                   End                  Sectors               Size Type
    /dev/nvme0n1p1                                34                  32767                 32734                16M Microsoft reserved
    /dev/nvme0n1p2                             32768              879779839             879747072             419.5G Microsoft basic data
    /dev/nvme0n1p3                        1416650752             1418747903               2097152                 1G EFI System
    /dev/nvme0n1p4                        1418747904             1437622271              18874368                 9G Linux swap
    /dev/nvme0n1p5                        1437622272             1953523711             515901440               246G Linux filesystem
>>  /dev/nvme0n1p6                         879779840             1416650751             536870912               256G Linux filesystem

 ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
 │  Partition UUID: F2F1EF58-82EA-46A6-BF49-896AA40C6060                                                                                           │
 │  Partition type: Linux filesystem (0FC63DAF-8483-4772-8E79-3D69D8477DE4)                                                                        │
 │ Filesystem UUID: b4b0b42d-20be-4cf8-be81-9775efa6c151                                                                                           │
 │Filesystem LABEL: crypthomevar                                                                                                                   │
 │      Filesystem: crypto_LUKS                                                                                                                    │
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
                                   [ Delete ]  [Resize]  [ Quit ]  [ Type ]  [ Help ]  [ Sort ]  [ Write ]  [ Dump ]
                                                        Quit program without writing changes
Advanced Setting: fdisk Command Line Partitioning Tutorial (Click to expand)

fdisk is a powerful command line partition tool.

fdisk /dev/nvme0n1

1. View current partition layout

Use p key to show disk current partition configuration.

Command (m for help): p
Disk /dev/nvme0n1: 931.51 GiB, 1000204886016 bytes, 1953525168 sectors
Disk model: NVMe SSD
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 4096 bytes
I/O size (minimum/optimal): 4096 bytes / 4096 bytes
Disklabel type: gpt
Disk identifier: 3E56EE74-0571-462B-A992-9872E3855D75

Device           Start        End    Sectors   Size Type
/dev/nvme0n1p1    2048    2099199    2097152     1G EFI System
/dev/nvme0n1p2 2099200   10487807    8388608     4G Linux swap
/dev/nvme0n1p3 10487808 1953523711 1943035904 926.5G Linux root (x86-64)

2. Create a new disk label

Press g key to immediately delete all existing disk partitions and create a new GPT disk label:

Command (m for help): g
Created a new GPT disklabel (GUID: ...).

Or, to keep existing GPT disk label, use d key to delete existing partitions one by one.

3. Create EFI System Partition (ESP)

Type n to create a new partition, select partition number 1, start sector default (2048), end sector type +1G:

Command (m for help): n
Partition number (1-128, default 1): 1
First sector (2048-..., default 2048): <Enter>
Last sector, +/-sectors or +/-size{K,M,G,T,P} (...): +1G

Created a new partition 1 of type 'Linux filesystem' and of size 1 GiB.
Partition #1 contains a vfat signature.

Do you want to remove the signature? [Y]es/[N]o: Y
The signature will be removed by a write command.

Mark partition as EFI System Partition (Type code 1):

Command (m for help): t
Selected partition 1
Partition type or alias (type L to list all): 1
Changed type of partition 'Linux filesystem' to 'EFI System'.

4. Create Swap Partition

Create 4GB Swap partition:

Command (m for help): n
Partition number (2-128, default 2): 2
First sector (...): <Enter>
Last sector (...): +4G

Created a new partition 2 of type 'Linux filesystem' and of size 4 GiB.

Command (m for help): t
Partition number (1,2, default 2): 2
Partition type or alias (type L to list all): 19
Changed type of partition 'Linux filesystem' to 'Linux swap'.

(Note: Type 19 is Linux swap)

5. Create Root Partition

Allocate remaining space to Root partition:

Command (m for help): n
Partition number (3-128, default 3): 3
First sector (...): <Enter>
Last sector (...): <Enter>

Created a new partition 3 of type 'Linux filesystem' and of size 926.5 GiB.

Note

Setting root partition type to "Linux root (x86-64)" is not mandatory. System works fine if set to "Linux filesystem". This filesystem type is only needed when using a bootloader that supports it (i.e., systemd-boot) and not requiring fstab file.

Set partition type to "Linux root (x86-64)" (Type code 23):

Command (m for help): t
Partition number (1-3, default 3): 3
Partition type or alias (type L to list all): 23
Changed type of partition 'Linux filesystem' to 'Linux root (x86-64)'.

6. Write Changes

After checking, type w to write changes and exit:

Command (m for help): w
The partition table has been altered.
Calling ioctl() to re-read partition table.
Syncing disks.

3. Create Filesystem and Mount
#

Why this step?

Disk partitioning only divides space, but cannot store data yet. Creating filesystem (like ext4, Btrfs) allows OS to manage and access these spaces. Mounting connects these filesystems to specific locations in Linux file tree.

3.1 Formatting
#

mkfs.fat -F 32 /dev/nvme0n1p1  # Format ESP partition as FAT32
mkswap /dev/nvme0n1p2          # Format Swap partition
mkfs.xfs /dev/nvme0n1p3        # Format Root partition as XFS

If using Btrfs:

mkfs.btrfs -L gentoo /dev/nvme0n1p3

If using ext4:

mkfs.ext4 /dev/nvme0n1p3

Other Filesystems

For others like F2FS or ZFS, please refer to relevant Wiki.

3.2 Mounting (XFS Example)
#

mount /dev/nvme0n1p3 /mnt/gentoo        # Mount Root partition
mkdir -p /mnt/gentoo/efi                # Create ESP mount point
mount /dev/nvme0n1p1 /mnt/gentoo/efi    # Mount ESP partition
swapon /dev/nvme0n1p2                   # Enable Swap partition
Advanced Setting: Btrfs Subvolume Example (Click to expand)

1. Formatting

mkfs.fat -F 32 /dev/nvme0n1p1  # Format ESP
mkswap /dev/nvme0n1p2          # Format Swap
mkfs.btrfs -L gentoo /dev/nvme0n1p3 # Format Root (Btrfs)

2. Create Subvolumes

mount /dev/nvme0n1p3 /mnt/gentoo
btrfs subvolume create /mnt/gentoo/@
btrfs subvolume create /mnt/gentoo/@home
umount /mnt/gentoo

3. Mount Subvolumes

mount -o compress=zstd,subvol=@ /dev/nvme0n1p3 /mnt/gentoo
mkdir -p /mnt/gentoo/{efi,home}
mount -o subvol=@home /dev/nvme0n1p3 /mnt/gentoo/home
mount /dev/nvme0n1p1 /mnt/gentoo/efi    # Note: ESP must be FAT32 format
swapon /dev/nvme0n1p2

4. Verify Mount

lsblk

Output Example:

NAME             MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINTS
nvme0n1          259:1    0 931.5G  0 disk
├─nvme0n1p1      259:7    0     1G  0 part  /mnt/gentoo/efi
├─nvme0n1p2      259:8    0     4G  0 part  [SWAP]
└─nvme0n1p3      259:9    0 926.5G  0 part  /mnt/gentoo/home
                                            /mnt/gentoo

Btrfs Snapshot Recommendation

Recommended to use Snapper to manage snapshots. Reasonable subvolume planning (like separating @ and @home) makes system rollback easier.

Advanced Setting: Encrypted Partition (LUKS) (Click to expand)

1. Create Encrypted Container

cryptsetup luksFormat --type luks2 --pbkdf argon2id --hash sha512 --key-size 512 /dev/nvme0n1p3

2. Open Encrypted Container

cryptsetup luksOpen /dev/nvme0n1p3 gentoo-root

3. Formatting

mkfs.fat -F 32 /dev/nvme0n1p1       # Format ESP
mkswap /dev/nvme0n1p2               # Format Swap
mkfs.btrfs --label root /dev/mapper/gentoo-root # Format Root (Btrfs)

4. Mounting

mount /dev/mapper/gentoo-root /mnt/gentoo
mkdir -p /mnt/gentoo/efi
mount /dev/nvme0n1p1 /mnt/gentoo/efi
swapon /dev/nvme0n1p2

5. Verify Mount

lsblk

Output Example:

NAME             MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINTS
nvme0n1          259:1    0 931.5G  0 disk
├─nvme0n1p1      259:7    0     1G  0 part  /mnt/gentoo/efi
├─nvme0n1p2      259:8    0     4G  0 part  [SWAP]
└─nvme0n1p3      259:9    0 926.5G  0 part
  └─gentoo-root  253:0    0 926.5G  0 crypt /mnt/gentoo

Recommendation

After mounting, recommended to use lsblk to confirm mount points are correct.

lsblk

Output Example (Similar to below):

NAME             MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINTS
 nvme0n1          259:1    0 931.5G  0 disk
├─nvme0n1p1      259:7    0     1G  0 part  /efi
├─nvme0n1p2      259:8    0     4G  0 part  [SWAP]
└─nvme0n1p3      259:9    0 926.5G  0 part  /

4. Download Stage3 and Enter chroot
#

Why this step?

Stage3 is a minimal Gentoo base system environment. We will unpack it to the hard drive as the "foundation" of the new system, and then enter this new environment via chroot for subsequent configuration.

4.1 Select Stage3
#

  • OpenRC: stage3-amd64-openrc-*.tar.xz
  • systemd: stage3-amd64-systemd-*.tar.xz
  • Desktop variants just pre-enable some USE flags, standard version is more flexible.

4.2 Download and Unpack
#

More mirrors available at: Mirror List

cd /mnt/gentoo

# Use links browser to visit mirror site to download Stage3:
links http://distfiles.gentoo.org/releases/amd64/autobuilds/

# In links browser:
# 1. Select the directory with latest date (Format: YYYYMMDDTHHMMSSZ)
# 2. Download stage3-*.tar.xz file

# Unpack Stage3 archive:
# x:extract p:preserve permissions v:verbose f:file --numeric-owner:use numeric IDs
tar xpvf stage3-*.tar.xz --xattrs-include='*.*' --numeric-owner

If downloaded .DIGESTS or .CONTENTS, can verify with openssl or gpg.

4.3 Copy DNS and Mount Pseudo-filesystems
#

cp --dereference /etc/resolv.conf /mnt/gentoo/etc/ # Copy DNS config
mount --types proc /proc /mnt/gentoo/proc          # Mount process info
mount --rbind /sys /mnt/gentoo/sys                 # Bind mount system info
mount --rbind /dev /mnt/gentoo/dev                 # Bind mount device nodes
mount --rbind /run /mnt/gentoo/run                 # Bind mount runtime info
mount --make-rslave /mnt/gentoo/sys                # Set as slave mount
mount --make-rslave /mnt/gentoo/dev
mount --make-rslave /mnt/gentoo/run

Using OpenRC can omit /run step.

4.4 Enter chroot
#

chroot /mnt/gentoo /bin/bash    # Switch root directory to new system
source /etc/profile             # Load environment variables
export PS1="(chroot) ${PS1}"    # Modify prompt to distinguish environment

5. Initialize Portage and make.conf
#

Why this step?

Portage is Gentoo's package management system and core feature. Initializing Portage and configuring make.conf is like setting the "blueprint" for your new system, deciding how software is compiled, what features to use, and where to download from.

5.1 Sync Tree
#

emerge-webrsync   # Get latest Portage snapshot (faster than rsync)
emerge --sync     # Sync Portage tree (get latest ebuilds)
emerge --ask app-editors/vim # Install Vim editor (Recommended)
eselect editor list          # List available editors
eselect editor set vi        # Set Vim as default editor (vi usually symlinks to vim)

Set Mirrors (See Mirror List for more):

mirrorselect -i -o >> /etc/portage/make.conf

# Or manually select (Example: Global):
# echo 'GENTOO_MIRRORS="http://distfiles.gentoo.org/"' >> /etc/portage/make.conf

5.2 make.conf Example
#

Edit /etc/portage/make.conf:

vim /etc/portage/make.conf

Newbie Configuration (Copy & Paste):

Tip

Please modify -j parameter in MAKEOPTS according to your CPU cores (e.g. 8 cores use -j8).

# ========== Compilation Optimization ==========
# -march=native: Optimize for current CPU architecture
# -O2: Recommended optimization level
# -pipe: Use pipes to speed up compilation
COMMON_FLAGS="-march=native -O2 -pipe"
CFLAGS="${COMMON_FLAGS}"    # C compiler flags
CXXFLAGS="${COMMON_FLAGS}"  # C++ compiler flags
FCFLAGS="${COMMON_FLAGS}"   # Fortran compiler flags
FFLAGS="${COMMON_FLAGS}"    # Fortran 77 compiler flags

# ========== Parallel Compilation ==========
# Number after -j = CPU threads (run nproc to check)
# Decrease if memory is low (e.g. -j4)
MAKEOPTS="-j8"

# ========== Language & Localization ==========
# LC_MESSAGES=C: Keep compilation output in English
LC_MESSAGES=C
# L10N/LINGUAS: Supported languages
L10N="en en-US zh zh-CN zh-TW"
LINGUAS="en en_US zh zh_CN zh_TW"

# ========== Mirrors ==========
# Generated by mirrorselect or manually added

# ========== USE Flags ==========
# systemd: Use systemd as init (Change to -systemd if using OpenRC)
# dist-kernel: Use distribution kernel, recommended for beginners
# networkmanager: Network management tool
# bluetooth: Bluetooth support (Remove if not needed)
USE="systemd udev dbus policykit networkmanager bluetooth git dist-kernel"

# ========== License Setting ==========
# "*" Accept all licenses (including proprietary)
# Warning: This means you agree to install closed-source software
# Change to "@FREE" for FOSS only
ACCEPT_LICENSE="*"

Detailed Configuration

For a fully commented make.conf example, please see Advanced Section 13.11.

This example includes:

  • Detailed explanation and recommended values for each setting
  • Adjustments for different hardware
  • USE flags explanation
  • FEATURES and logging settings

Newbie Tips

  • MAKEOPTS="-j32" number should be your CPU thread count, check with nproc.
  • Decrease parallel jobs (e.g. -j16) if running out of memory.
  • USE flags are Gentoo's core feature, deciding what features to include during compilation.

Advanced Settings

5.3 Configure CPU Flags
#

To let Portage know what specific instruction sets your CPU supports (AES, AVX, SSE4.2, etc.), we need to set CPU_FLAGS_X86.

Install detection tool:

emerge --ask app-portage/cpuid2cpuflags

Run detection and append to config:

cpuid2cpuflags >> /etc/portage/make.conf

Check end of /etc/portage/make.conf, you should see something like:

CPU_FLAGS_X86="aes avx avx2 f16c fma3 mmx mmxext pclmul popcnt rdrand sse sse2 sse3 sse4_1 sse4_2 ssse3"

Note

For more details on CPU flags optimization, refer to Advanced Section 13.13.

5.4 Optional: Enable Binary Package Host
#

Why use Binary Package Host?

Since December 2023, Gentoo officially provides a binary package host (binhost), which can drastically reduce installation time:

  • LLVM / Clang: From 2-3 hours to 5 minutes
  • Rust: From 1-2 hours to 3 minutes
  • Firefox / Chromium: From hours to 10 minutes

All binary packages are verified with cryptographic signatures to ensure security.

Configure Binary Package Host
#

Step 1: Configure Repository

Create binhost config:

mkdir -p /etc/portage/binrepos.conf
vim /etc/portage/binrepos.conf/gentoobinhost.conf

Add the following content:

# /etc/portage/binrepos.conf/gentoobinhost.conf
[binhost]
priority = 9999
sync-uri = https://distfiles.gentoo.org/releases/amd64/binpackages/23.0/x86-64/

Step 2: Enable Binary Features

Edit /etc/portage/make.conf, add:

# Enable binary package download and signature verification
FEATURES="${FEATURES} getbinpkg binpkg-request-signature"

# Default to binary packages (Optional, recommended for beginners)
EMERGE_DEFAULT_OPTS="${EMERGE_DEFAULT_OPTS} --getbinpkg"

Step 3: Get Signature Keys Run:

getuto

Verify Configuration
#

Test:

emerge --pretend --getbinpkg sys-apps/portage

If output contains [binary], it is successful:

[ebuild   R    ] sys-apps/portage-3.0.61::gentoo [binary]

Usage Tips

  • Prefer Binary: With above keys, emerge will automatically prefer binaries.
  • Force Source: emerge --usepkg=n <package>
  • Binary Only: emerge --usepkgonly <package>
  • Browse Packages: Gentoo Binhost Browser
---

6. Profile, System Configuration, and Localization
#

Why this step?

Profiles define basic system settings and default USE flags, embodying Gentoo's flexibility. Configuring timezone, locale, and network are key to making your Gentoo system function correctly and suit your usage habits.

6.1 Select Profile
#

eselect profile list          # List all available profiles
eselect profile set <number>  # Set selected profile
emerge -avuDN @world          # Update system to match new profile

Common options:

  • default/linux/amd64/23.0/desktop/plasma/systemd
  • default/linux/amd64/23.0/desktop/gnome/systemd
  • default/linux/amd64/23.0/desktop (OpenRC Desktop)

6.2 Timezone and Locale
#

echo "Asia/Shanghai" > /etc/timezone
emerge --config sys-libs/timezone-data

echo "en_US.UTF-8 UTF-8" > /etc/locale.gen
echo "zh_CN.UTF-8 UTF-8" >> /etc/locale.gen
locale-gen                      # Generate selected locales
eselect locale set en_US.utf8   # Set default system locale (Recommended English to avoid mojibake)

# Reload environment
env-update && source /etc/profile && export PS1="(chroot) ${PS1}"

6.3 Hostname and Network Configuration
#

Set Hostname:

echo "gentoo" > /etc/hostname

Network Manager Selection:

Option A: NetworkManager (Recommended, Universal)

Reference: NetworkManager

Suitable for most desktop users, supporting both OpenRC and systemd.

emerge --ask net-misc/networkmanager
# OpenRC:
rc-update add NetworkManager default
# systemd:
systemctl enable NetworkManager

Configuration Tip

GUI: Run nm-connection-editor CLI: Use nmtui (Graphical wizard) or nmcli

Advanced Tip: Use iwd backend (Click to expand)

NetworkManager supports using iwd as backend (faster than wpa_supplicant).

echo "net-misc/networkmanager iwd" >> /etc/portage/package.use/networkmanager
emerge --ask --newuse net-misc/networkmanager

Then edit /etc/NetworkManager/NetworkManager.conf, add wifi.backend=iwd under [device].

Option B: Lightweight Solution (Click to expand)

If you don't want to use NetworkManager, you can choose:

  1. Wired Network (dhcpcd)

Reference: dhcpcd

emerge --ask net-misc/dhcpcd
# OpenRC:
rc-update add dhcpcd default
# systemd:
systemctl enable dhcpcd
  1. Wireless Network (iwd)

Reference: iwd

emerge --ask net-wireless/iwd
# OpenRC:
rc-update add iwd default
# systemd:
systemctl enable iwd
Option C: Native Solution (Click to expand)

Use init system's native network management, suitable for servers or minimal environments.

OpenRC Network Scripts:

vim /etc/conf.d/net

Note

Please replace enp5s0 below with your actual interface name (check with ip link).

Add:

config_enp5s0="dhcp"

ln -s /etc/init.d/net.lo /etc/init.d/net.enp5s0 # Create symlink
rc-update add net.enp5s0 default                # Enable on boot

Systemd Networkd:

systemctl enable systemd-networkd
systemctl enable systemd-resolved

Note: Requires manual .network configuration files.

6.4 Configure fstab
#

Why this step?

The system needs to know which partitions to mount at boot. /etc/fstab tells the system:

  • Which partitions to mount automatically
  • Where to mount each partition
  • Which filesystem type to use

Recommend using UUID: Device paths (like /dev/sda1) change, but UUIDs are unique descriptors for filesystems.

Method A: Auto-generate with genfstab (Recommended)#

Click to expand detailed steps

Install genfstab

genfstab is in sys-fs/genfstab package.

  • Gig-OS / Arch LiveISO: Pre-installed.
  • Gentoo Minimal ISO: Install via emerge --ask sys-fs/genfstab.

Standard Usage (Execute outside chroot):

# 1. Verify all partitions mounted
lsblk
mount | grep /mnt/gentoo

# 2. Generate fstab (Use UUID)
genfstab -U /mnt/gentoo >> /mnt/gentoo/etc/fstab

# 3. Check generated file
cat /mnt/gentoo/etc/fstab
Alternatives inside chroot

Method 1: Inside chroot (Simplest)

emerge --ask sys-fs/genfstab
genfstab -U / >> /etc/fstab
vim /etc/fstab # Clean up entries like /proc, /sys

Method 2: New Terminal (LiveGUI) Open new terminal:

genfstab -U /mnt/gentoo >> /mnt/gentoo/etc/fstab

genfstab Compatibility

genfstab supports:

  • Btrfs Subvolumes: Auto-detects subvol=
  • LUKS: Auto-uses decrypted device UUID
  • Standard: ext4, xfs, vfat

Method B: Manual Editing
#

Click to expand manual steps

1. Get UUIDs

blkid

2. Edit fstab

vim /etc/fstab

Basic Example (ext4/xfs):

# <UUID>                                   <Mountpoint> <Type> <Options>             <dump> <fsck>
UUID=7E91-5869                             /efi         vfat   defaults,noatime      0      2
UUID=7fb33b5d-4cff-47ff-ab12-7b461b5d6e13  none         swap   sw                    0      0
UUID=8c08f447-c79c-4fda-8c08-f447c79ce690  /            xfs    defaults,noatime      0      1
Btrfs Subvolume Configuration

genfstab: genfstab -U works automatically if subvolumes are mounted.

Manual Example:

# Root Subvolume
UUID=7b44c5eb-caa0-413b-9b7e-a991e1697465  /       btrfs  defaults,noatime,compress=zstd:3,discard=async,space_cache=v2,subvol=@       0 0

# Home Subvolume
UUID=7b44c5eb-caa0-413b-9b7e-a991e1697465  /home   btrfs  defaults,noatime,compress=zstd:3,discard=async,space_cache=v2,subvol=@home   0 0

# Swap
UUID=7fb33b5d-4cff-47ff-ab12-7b461b5d6e13  none    swap   sw                                                                            0 0

# EFI
UUID=7E91-5869                             /efi    vfat   defaults,noatime,fmask=0022,dmask=0022                                        0 2
LUKS Encrypted Partition

Key Point

fstab must use the Decrypted Mapped Device UUID (/dev/mapper/xxx), NOT the LUKS container UUID.

genfstab: Automatically detects decrypted device UUID.

Manual: Use blkid.

  • Use UUID from TYPE="btrfs" (or ext4), not TYPE="crypto_LUKS".

7. Kernel and Firmware
#

Why this step?

The kernel is the core of the OS. Gentoo allows you to manually tailor the kernel for extreme performance and minimal size, but beginners can also use pre-compiled kernels.

7.1 Fast Track: Distribution Kernel
#

emerge --ask sys-kernel/gentoo-kernel-bin

Remember to regenerate bootloader config after kernel updates.

Advanced: Manual Compilation (Gentoo Experience) (Click to expand)

Newbie Tip

Manual compilation is complex. If you want to try Gentoo quickly, skip this section and use 7.1.

Quick Start with Genkernel:

emerge --ask sys-kernel/gentoo-sources sys-kernel/genkernel
genkernel --install all  # Auto compile and install kernel/initramfs

Advanced Content

For deep configuration, LLVM/Clang compilation, LTO, etc., see Section 16.0 Advanced Kernel Guide.

7.3 Firmware and Microcode
#

mkdir -p /etc/portage/package.license
# Accept license for linux-firmware
echo 'sys-kernel/linux-firmware linux-fw-redistributable no-source-code' > /etc/portage/package.license/linux-firmware
echo 'sys-kernel/installkernel dracut' > /etc/portage/package.use/installkernel
emerge --ask sys-kernel/linux-firmware
emerge --ask sys-firmware/intel-microcode  # Intel CPU

About package.license

Explicitly creating a license file is best practice in Gentoo, even if default is set to accept all, ensuring better maintenance and auditability.

8. Base Tools
#

Why this step?

Stage3 only has basic commands. We need to add system logger, network management, and filesystem tools.

8.1 System Services
#

OpenRC User Configuration (Click to expand)

1. System Logger

emerge --ask app-admin/syslog-ng
rc-update add syslog-ng default

2. Cron Daemon

emerge --ask sys-process/cronie
rc-update add cronie default

3. Time Sync

emerge --ask net-misc/chrony
rc-update add chronyd default
systemd User Configuration (Click to expand)

systemd has built-in journal and timers.

Time Sync

systemctl enable --now systemd-timesyncd

8.2 Filesystem Tools
#

Install tools for your filesystem:

emerge --ask sys-fs/e2fsprogs  # ext4
emerge --ask sys-fs/xfsprogs   # XFS
emerge --ask sys-fs/dosfstools # FAT/vfat (For EFI)
emerge --ask sys-fs/btrfs-progs # Btrfs

9. Create User and Permissions
#

Why this step?

Using root account for daily tasks is discouraged. We need to create a normal user and grant sudo privileges for better security.

passwd root # Set root password
useradd -m -G wheel,video,audio,plugdev zakk # Create user (replace 'zakk') and add to groups
passwd zakk # Set user password
emerge --ask app-admin/sudo
echo "%wheel ALL=(ALL) ALL" > /etc/sudoers.d/wheel # Allow wheel group to use sudo

If using systemd, add user to network, lp groups if needed.

10. Install Bootloader
#

10.1 GRUB
#

Reference: GRUB

emerge --ask sys-boot/grub:2
mkdir -p /efi/EFI/Gentoo
grub-install --target=x86_64-efi --efi-directory=/efi --bootloader-id=Gentoo # Install GRUB to ESP
# Install os-prober for multi-boot support
emerge --ask sys-boot/os-prober

# Enable os-prober (To detect Windows, etc.)
echo 'GRUB_DISABLE_OS_PROBER=false' >> /etc/default/grub

# Generate Config
grub-mkconfig -o /boot/grub/grub.cfg
Advanced: systemd-boot (UEFI Only)

Reference: systemd-boot

bootctl --path=/efi install # Install systemd-boot

# 1. Create Gentoo Entry
vim /efi/loader/entries/gentoo.conf

Content (Replace UUIDs):

title   Gentoo Linux
linux   /vmlinuz-6.6.62-gentoo-dist
initrd  /initramfs-6.6.62-gentoo-dist.img
options root=UUID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx rw quiet

Note If using LUKS, options line needs rd.luks.uuid=....

2. Create Windows Entry:

vim /efi/loader/entries/windows.conf

title      Windows 11
sort-key   windows-01
efi        /EFI/Microsoft/Boot/bootmgfw.efi

3. Set Default:

vim /efi/loader/loader.conf

default gentoo.conf
timeout 3
console-mode auto
Advanced: Encryption Support (LUKS Only)

Reference: Dm-crypt

Step 1: Enable systemd cryptsetup

mkdir -p /etc/portage/package.use
echo "sys-apps/systemd cryptsetup" >> /etc/portage/package.use/fde
emerge --ask --oneshot sys-apps/systemd

Step 2: Get LUKS UUID

blkid /dev/nvme0n1p3
# Note the UUID where TYPE="crypto_LUKS"

Step 3: Kernel Parameters (GRUB) Edit /etc/default/grub (Replace UUIDs):

GRUB_CMDLINE_LINUX="rd.luks.uuid=<LUKS-UUID> rd.luks.allow-discards root=UUID=<ROOT-UUID> rootfstype=btrfs"

Note: root=UUID here is the decrypted filesystem UUID.

Step 4: Install dracut

emerge --ask sys-kernel/dracut

Step 5: Dracut Config Edit /etc/dracut.conf.d/luks.conf:

kernel_cmdline=""
add_dracutmodules+=" btrfs systemd crypt dm "
install_items+=" /sbin/cryptsetup /bin/grep "
filesystems+=" btrfs "

Step 6: /etc/crypttab Edit /etc/crypttab (Use LUKS UUID):

gentoo-root UUID=<LUKS-UUID> none luks,discard

Step 7: Regenerate initramfs

dracut --kver $(make -C /usr/src/linux -s kernelrelease) --force

Step 8: Update GRUB

grub-mkconfig -o /boot/grub/grub.cfg
grep initrd /boot/grub/grub.cfg

11. Final Reboot
#

Checklist:

  1. emerge --info runs fine
  2. /etc/fstab is correct (blkid to verify)
  3. User and Root passwords set
  4. Bootloader configured
  5. Initramfs has cryptsetup (if LUKS)

Exit and Reboot:

exit
umount -l /mnt/gentoo/dev{/shm,/pts,}
umount -R /mnt/gentoo
swapoff -a
reboot

12. Maintenance: Becoming a System Admin
#

12.1 Routine Maintenance
#

1. Update System (Bi-weekly recommended):

emerge --sync
emerge -avuDN @world

2. Check News (Important):

eselect news list
eselect news read

3. Config Updates:

dispatch-conf  # Recommended interactive tool

4. Clean Dependencies:

emerge --ask --depclean

5. Clean Source Files:

emerge --ask app-portage/gentoolkit
eclean-dist

6. Handle Blocked Packages: Deselect conflicting packages (emerge --deselect <pkg>) then emerge --depclean.

7. Security Checks (GLSA):

glsa-check -l

8. Logs and Status:

  • OpenRC: rc-status, tail -f /var/log/messages
  • Systemd: journalctl -b, journalctl -xe

12.2 Portage Tips
#

1. File Structure (/etc/portage/): Use directories!

  • make.conf
  • package.use/
  • package.accept_keywords/
  • package.license/

2. Emerge Flags:

  • --ask (-a): Confirm
  • --verbose (-v): Details
  • --update (-u) --deep (-D) --newuse (-N): Full update

3. Search (Eix): Recommended over emerge -s.

emerge --ask app-portage/eix
eix-update
eix <keyword>

Congratulations! You have completed the Gentoo Base Installation.

Next Step: Desktop Configuration

Related

About

About

··3 mins· loading
Zakk
Timeline

Timeline

··2 mins· loading
Zakk