diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest
index ce73fb90..c7bf20d6 100644
--- a/sys-kernel/hardened-sources/Manifest
+++ b/sys-kernel/hardened-sources/Manifest
@@ -7,4 +7,5 @@ DIST hardened-patches-3.10.2-1.extras.tar.bz2 718580 SHA256 5a0c9549f4d79b49b40e
 DIST hardened-patches-3.10.3-1.extras.tar.bz2 720201 SHA256 c53eac900652837271c0d829b053d4a969b3ec383f7cc2c369714c2857666dcf SHA512 d521a0251338ed491e60c4aa5d4173555acd485bca1702e89c7d62551b77bea337f58ef6b970165cd03262bfb0307def3343bbc28c88b1f4a3bd42bdf9dda71d WHIRLPOOL d02f2ba1e49e7c0bb6a9ee6a93eaa58856440abb104e02d4dc80db9163af995e049a15c566e1ed1e4c7883629bed6a1f07e1d011978fa129bba1696ff26f19c0
 DIST hardened-patches-3.10.4-1.extras.tar.bz2 728725 SHA256 ee69fb5bf6b78497f9eaa18aa388c451899f4f9deb50fd067c0fc1e09adfa93c SHA512 7ce8baf0907c420547409cd59eb3493852bc77ec5d9dbfccb9843cd5af77c7fcbd8f3b7d8c0a5c557284fd696ea528c30019c37ba671934ac7d72cdad14f5b4c WHIRLPOOL 51bf5e393baaf1f41e65c67562df7f53af80376c0adada1f97cff30559bcf60aa2484db22511e47d7788e18061c19b66b33cab7def6aaa2823a18d1d904bfd9f
 DIST hardened-patches-3.10.4-2.extras.tar.bz2 728768 SHA256 c12793cd69d2cc240e30ce903453fabe8fd8c336642f6e433e2f1e5fee566594 SHA512 6b0c67900b0c3436cd7d93d4da702e20ce3467a275dc44ddc1739638cc65e8ab9f91f27be286a3c92f6eca298a886ac5be482dc96a51f8f76464aa690f5131d9 WHIRLPOOL d5da01e2a8d894e1dad09b46f2518b602c77f0fec7f6da63a510f2ac0475ff4e2a3d2e4c03ad22d7c073b470022b6cc74ea6eddb8aec2096544407a8d72db8b7
+DIST hardened-patches-3.10.4-3.extras.tar.bz2 730055 SHA256 101d9b9e49a1507490fd9d3925fdbc434f8a366efaf27c19d3b70a7026012c85 SHA512 d5148e87d9957216ecfcd822dfe633d3b6da54d125c517a538993c0bcd7993b466cab9adfa30f01025909a8140df9bdf8247a30f23d64ad7e238f7f70b84e3ce WHIRLPOOL c80862c4674b3f00447ec1b4cadf2910e503f184012df9686307d90e954ac00bf926d86e7d900ebb0b358c480fbbc5f4b6b755472b2439927c242c1b5077e6d5
 DIST linux-3.10.tar.xz 73175088 SHA256 df27fa92d27a9c410bfe6c4a89f141638500d7eadcca5cce578954efc2ad3544 SHA512 5fb109fcbd59bf3dffc911b853894f0a84afa75151368f783a1252c5ff60c7a1504de216c0012be446df983e2dea400ad8eeed3ce04f24dc61d0ef76c174dc35 WHIRLPOOL e7c0ccc2231e430b831218fc66f1940d095d2d5447d391329c6a7373d4a1d16708f64778b32e4847802ee2dae4fcf7cb67a1238fd4eb204fd0c4bce2d8134053
diff --git a/sys-kernel/hardened-sources/hardened-sources-3.10.4-r2.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.10.4-r2.ebuild
new file mode 100644
index 00000000..f95b6a6e
--- /dev/null
+++ b/sys-kernel/hardened-sources/hardened-sources-3.10.4-r2.ebuild
@@ -0,0 +1,47 @@
+# Copyright 1999-2013 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.10.4-r2.ebuild,v 1.1 2013/08/04 11:16:13 blueness Exp $
+
+EAPI="5"
+
+ETYPE="sources"
+K_WANT_GENPATCHES="base"
+K_GENPATCHES_VER="8"
+K_DEBLOB_AVAILABLE="1"
+
+inherit kernel-2
+detect_version
+
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-3"
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
+
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
+UNIPATCH_EXCLUDE="
+	1500_XATTR_USER_PREFIX.patch
+	1600_CVE-2013-4125-ipv6-fix-fib6_add_rt2node-BUG.patch
+	1600_CVE-2013-4127-fix-use-after-free-in-vhost_net_flush.patch
+	2900_dev-root-proc-mount-fix.patch"
+
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
+IUSE="deblob"
+
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
+
+RDEPEND=">=sys-devel/gcc-4.5"
+
+pkg_postinst() {
+	kernel-2_pkg_postinst
+
+	local GRADM_COMPAT="sys-apps/gradm-2.9.1*"
+
+	ewarn
+	ewarn "Users of grsecurity's RBAC system must ensure they are using"
+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
+	ewarn "It is strongly recommended that the following command is issued"
+	ewarn "prior to booting a ${PF} kernel for the first time:"
+	ewarn
+	ewarn "emerge -na =${GRADM_COMPAT}"
+	ewarn
+}