Normally, when a kernel developer shows up with a proposed option that
doesn’t do anything, a skeptical response can be expected. But there are
exceptions. Mickaël Salaün is proposing
the addition of a new flag (O_MAYEXEC) for the openat2()
system call that, by default, will change nothing. But it does
open a path toward tighter security in some situations.

Source: LWN.net – [$] O_MAYEXEC — explicitly opening files for execution