Hello,
Congratulations on the acceptance of your paper at CAV 2026!
When looking at results.csv in your artifact, we noticed that the "unrealizable" result by Issy (in the table given as issy3-tsl) for the benchmark robot-tasks.tslmt is incorrectly marked as "wrong".
According to the semantics of TSL, the specification in robot-tasks.tslmt is indeed unrealizable. To see this, consider an initial state where x=1 and y=1, along with some inputs that satisfy the assumption. In this case, the guarantee requires that all of the updates [x <- i_x] , [x <- sub x i1()] , [y <- i_y] , [y <- y] must be true simultaneously. This is not possible, since [x <- i_x] and [x <- sub x i1()] cannot both be satisfied at the same time (the same holds for the updates to y too). The reason for this is that the terms i_x and sub x i1() are syntactically different. As defined by the semantics of TSL, updates are checked syntactically (see page 617 in https://link.springer.com/content/pdf/10.1007/978-3-030-25540-4_35.pdf). This means that for initial state <x=1,y=1> and some inputs that satisfy the assumption, the guarantee cannot be satisfied, and hence the specification is unrealizable.
In conclusion, the "unrealizable" result reported by Issy is in fact correct, while the "realizable" result reported by sweap (as sweap-tsl in the table) is wrong. We kindly ask that any report of this in your paper be corrected in the final version.
Best regards,
Rayna
Hello,
Congratulations on the acceptance of your paper at CAV 2026!
When looking at
results.csvin your artifact, we noticed that the "unrealizable" result by Issy (in the table given as issy3-tsl) for the benchmarkrobot-tasks.tslmtis incorrectly marked as "wrong".According to the semantics of TSL, the specification in
robot-tasks.tslmtis indeed unrealizable. To see this, consider an initial state where x=1 and y=1, along with some inputs that satisfy the assumption. In this case, the guarantee requires that all of the updates[x <- i_x],[x <- sub x i1()],[y <- i_y],[y <- y]must be true simultaneously. This is not possible, since[x <- i_x]and[x <- sub x i1()]cannot both be satisfied at the same time (the same holds for the updates to y too). The reason for this is that the termsi_xandsub x i1()are syntactically different. As defined by the semantics of TSL, updates are checked syntactically (see page 617 in https://link.springer.com/content/pdf/10.1007/978-3-030-25540-4_35.pdf). This means that for initial state <x=1,y=1> and some inputs that satisfy the assumption, the guarantee cannot be satisfied, and hence the specification is unrealizable.In conclusion, the "unrealizable" result reported by Issy is in fact correct, while the "realizable" result reported by sweap (as sweap-tsl in the table) is wrong. We kindly ask that any report of this in your paper be corrected in the final version.
Best regards,
Rayna