Implementing dependent types: how hard could it be? (Part 1)

Posted on May 23, 2025

Short answer: hard, but not as hard as I thought.

Type systems in which the types (of functions, typically) may depend on terms are called dependently-typed. These systems exist on a spectrum, where restricted forms of dependent types exist in common functional programming languages such as OCaml, Haskell, and even TypeScript; the most complex forms of dependent types appear in proof assistants like Agda and Coq.

Dependent types complicate the typechecking process. Normally, a typechecker verifies, for instance, that the type of the argument in a function application is compatible with the type of the parameter of the function. In a simply-typed language, it suffices to check that the types are equal. In the dependently-typed setting, types may contain terms requiring evaluation, so the typechecker must normalize types before proceeding to check equality. For example, the typechecker must decide whether 3 + 5 (a term requiring evaluation) equals 8 in the course of deciding whether a term of type Vec (3 + 5) A can be passed to a function expecting an input of type Vec 8 A.

Let me be clear: proving that every well-typed term in a dependently-typed language can be normalized – this is called the normalization property – is very challenging. But that is not the goal of this post.

In this series of posts, I want to demonstrate how we can implement a typechecker for a small, dependently-typed lambda-calculus by relying on an elegant normalization technique called Normalization by Evaluation. normalization procedure. The plan for the series is the following.

The core calculus

If we allow terms to compute types and types to refer to terms, then the syntactic separation between these objects loses its relevance. Instead, let’s define a unified syntax that captures both, but nonetheless use the letter t to refer to terms understood as terms but the letters A and B to refer to terms understood as types.

Terms t, A, B ::= x | λx. t | t1 t2 | () | (x:A) -> B | ⊤ | ★

This syntax contains variables, lambda abstractions, applications, a constant () (unit), the dependent function type (x:A) -> B, the unit type , and the type of types . (To simplify, we’ll use the rule ★ : ★.)

With this syntax, we can write things we couldn’t in the simply-typed lambda calculus. For example, consider the type (x:⊤) -> (λx.⊤) x. From the point of view of the simply-typed lambda calculus, this type is very unusual: it contains a reducible expression (redex), namely the right-hand side of the arrow can be simplified to just by beta-reduction.

This syntax also allows for quantification over types, allowing us to write polymorphic functions, too. For example, here’s the type of a (simply-typed) composition operator.

(A:★) -> (B:★) -> (C:★) -> (f : B -> C) -> (g : A -> B) -> (x:A) -> C

We encode the syntax of the core calculus as a recursive type.

type ix = int

type tm =
    (* terms *)
    | Lam of name * tm
    | Var of ix
    | App of tm * tm
    | Unit
    (* types *)
    | Pi of (name * tp) * tp
    | Top
    | Star
and tp = tm (* to understand a term as a type *)
and ctx = (name * tp) list

This syntax uses a nameless (de Bruijn) representation for variables in order to simplify the implementation of capture-avoiding substitution, but I do store names of variables in binders and contexts as a compromise to enable writing a pretty-printer that shows names.

Normalization by Evaluation

A term is in normal form when it cannot be further reduced. Suppose t and A are in normal form, and that A contains a free variable x. Will the substitution [t/x]A be in normal form?

Not necessarily! That’s the central challenge in implementing our typechecker, which we will surmount by implementing a normalization procedure.

Normalization by Evaluation is a semantic approach to normalization. It is made up of two related procedures.

  1. eval is a bog-standard evaluation procedure, which interprets a lambda-term into a semantic space of values. This procedure is responsible for finding the beta-normal form of a lambda-term by eliminating all redexes from the term.
  2. quote is its inverse, which reifies an element from the semantics (a value) back into a lambda-term. This procedure is responsible for eta-expanding terms at function types, enabling us to consider f and λx. f x as judgmentally equal at the type A -> B.

The game plan to implement this pair of procedures is first to define the semantic space, i.e. the set values; then to implement eval; and finally to implement quote.

Values

The value of a term is its semantics. Since we’re working in OCaml, we can give the semantics of a lambda-term at function type as an OCaml function. In other words, we design our evaluation procedure so that if t : A -> B, then eval(t) gives us an OCaml function from values of type A to values of type B. This is a good idea, operationally speaking, because we get to wait until the argument to the function is known (and evaluated) before proceeding to evaluate the function body. The same line of reasoning leads to interpreting a Pi-type as an OCaml function on types.

type value =
    | VLam of name * (value -> value)
    | VUnit
    | VPi of (name * vtp) * (value -> vtp)
    | VTop
    | VStar

and vtp = value

This syntax of values is good enough for closed terms, having no free variables, but it is insufficient for open terms. Concretely, we will run into a problem when trying to implement quote later on: how will we reconstruct a lambda-term from an OCaml function value -> value? We want to quote the body of the abstraction – that is the output of the function value -> value – but to access the body, we must apply this OCaml function to some value. What value can we use?

The resolution to this quandry lies in generalizing the syntax of values to explicitly account for open terms. We might think to add merely a constructor for variables, but this isn’t enough, as e.g. x (λx. y) is an application that’s in normal form.

Rather than merely add variables, we add a separate syntax of so-called neutral terms. These are variables and elimination forms applied to neutral terms. Conceptually, a neutral term is a stack of elimination forms that are ultimately blocked on a variable. In contrast, the syntax of values I gave above corresponds to the introduction forms of the lambda-calculus.

type value =
    | VLam of name * (value -> value)
    | VUnit
    | VPi of (name * vtp) * (value -> vtp)
    | VTop
    | VStar
    | VN of neu (* neutral terms embed as values *)

and neu =
    | NVar of lvl
    | NApp of neu * value

and vtp = value
and lvl = int

Notice that the representation I use for variables here mentions lvl – these are de Bruijn levels, the dual of de Bruijn indices. When variables use de Bruijn levels, weakening such terms becomes free, whereas the use of de Bruijn indices would require costly explicit shifts. This will end up simplifying the implementation of eval.

Finally, this combined syntax of values and neutral terms is specifically designed to represent only beta-normal forms. A value is a stack of introduction forms that might at some point “switch” to a neutral term, which is then a stack of elimination forms ending on a variable. Crucially impossible is to write an elimination form whose subject is an introduction form, i.e. a non-beta-normal term.

eval

Recall from kindergarten how to evaluate lambda-terms, and use your imagination to extend the procedure to types. We’ll use an environment-based approach to efficiently handle substitutions in a lazy fashion. In the presence of neutral terms, whenever we evaluate an elimination form, we need to explicitly check whether the subject of the elimination is normal or neutral to proceed accordingly.

The helper function apply, which interprets a function application, performs this check.

type env = value list

let rec eval (e : env) (t : tm) : value =
    match t with
    (* types: *)
    | Top -> VTop
    | Star -> VStar
    | Pi ((x, tA), tB) -> VPi ((x, eval e tA), fun v -> eval (v::e) tB)
    (* terms: *)
    | Unit -> VUnit
    | Lam (x, t) -> VLam (x, fun v -> eval (v::e) t)
    | Var i -> List.nth e i
    | App (t1, t2) -> apply (eval e t1) (eval e t2)

and apply v1 v2 = match v1 with
    | VN n -> VN (NApp (n, v2))
    | VLam (_, f) -> f v2
    | _ -> failwith "type error"

quote

Equipped with eval to perform reductions, interpreting a lambda-term into an OCaml semantics, we’re now ready to implement its dual, to finally arrive at a normalization procedure by composing the two. This dual procedure, called quote, transforms a semantic value back into syntax.

What’s conceptually tricky about quote is how we handle functions. Recall that Lam (x, t) evaluates to the (metalanguage) closure fun v -> eval (v::e) t where the (meta) free variable e is an environment providing values for the (object) free variables present in t. To quote this, we must first apply the closure to a value. Thankfully, we have neutral terms at our disposal: we generate a variable, corresponding to the bound variable of the abstraction, to use as an argument.

Since neutral variables use de Bruijn levels, the quote procedure tracks a current depth, incremented by one whenever it traverses a binder.

Furthermore, quote is responsible for finding an eta-normal form, by performing eta-expansion of neutral terms at function types. This requires typing information, which quote will ultimately receive from the typechecker in the form of a semantic type. Then, quote must perform type reconstruction to maintain typing information at every step: quote traverses the given value together with its (semantic) type.

To know the type of a variable when quoting encounters it, we equip the process with a map from variables to semantic types. This mapping is called a typing environment, in contrast with an (ordinary) context that maps variables to syntactic types and an (ordinary) environment that maps variables to values (semantic terms). Since we conflate types and terms in our setup, a typing environment is really nothing more than an ordinary environment.

type tp_env = env

Since the syntax of values is broken down into normal values and neutral values, we need a separate quote_neu to quote neutral terms. When working with neutral terms, the flow of typing information is reversed: rather than take as input a type to be broken down alongside the value to quote, quote_neu instead produces as output the type of the given neutral value. Recall that a neutral term is a stack of elimination forms ultimately blocked on a variable; that variable’s type will have been recorded in the context previously when quoting an abstraction, and the stacked elimination forms will break down that type.

let vvar l = VN (NVar l)
let lvl2ix d l = d - l - 1

let rec quote (d : lvl) (e : tp_env) (vA : vtp) (v : value) : tm =
    match vA, v with
    (* types: *)
    | VStar, VTop -> Top
    | VStar, VStar -> Star
    | VStar, VPi ((x, vA), fB)->
        Pi ((x, quote d e VStar vA), quote (d+1) ((x, vA)::e) VStar (fB (vvar d)))
    (* terms: *)
    | VTop, VUnit -> Unit
    | VPi ((_, vA), fB), v ->
        Lam (x, quote (d+1) ((x, vA)::e) (fB (vvar d)) (apply v (vvar d))
    | vA, VN n -> quote_neu d e n |> fst
    | _ -> failwith "quote: ill-typed"

and quote_neu (d : lvl) (e : tp_env) : neu -> tm * vtp = function
    | NVar l ->
        let i = lvl2ix d l in
        let vA = ix_lookup i e in
        (Var i, vA)
    | NApp (n, v) ->
        let t, vAB = quote_neu d e n in
        begin match vAB with
        | VPi ((x, vA), fB) ->
            (App (t, quote d e vA v), fB v)
        | _ -> failwith "quote_neu: ill-typed application subject"
        end

On a well-typed value, quoting always succeeds. This justifies two choices made in this implementation of quote and quote_neu.

  1. In ill-typed cases, we simply use failwith.
  2. In the last case of quote, where we call quote_neu, the expected type of VN n (i.e. the input vA of quote) will necessarily equal its actual type (the type synthesized by quote_neu). We simply throw out the synthesized type.

Normalization

A roundtrip through eval and quote brings a term into normal form.

let norm (t : tm) (tA : tp) : tm =
    quote 0 [] (eval [] tA) (eval [] t)

To enable normalization of open terms – we will encounter open terms during typechecking – it suffices to slightly generalize norm. I’ll delay the discussion of that generalization until we get to implementing the typechecker, in Part 2 of the series.

Next steps

In this post, we built a normalization procedure for a small, dependently-typed calculus by following the Normalization by Evaluation strategy. That strategy consists broadly in the following steps.

  1. Define a semantics into which the language’s syntax is to be interpreted. In doing so, separate the introduction forms (normal terms) from the elimination forms (neutral terms), giving rise to a syntactic characterization of beta-normal forms.
  2. Implement an evaluation procedure eval that interprets the syntax into the semantics. This eliminates all beta-redexes from a given term.
  3. Implement the evaluation procedure’s inverse, called quote. This procedure converts a semantic term back into a syntactic term. This is a type-directed procedure. Typing information is crucially used to enable eta-expansion. This allows our system to identify as definitionally equal the terms f and λx. f x.
  4. A roundtrip through eval and quote brings a term into normal form. This ultimately gives us a way to compare types which may contain terms requiring evaluation, as is common in a dependently-typed system.

Equipped with the normalization procedure implemented in this post, we’re ready to code up the typechecker for this small language. The central challenge in implementing the typechecker, as usual, will be the handling of variables and substitutions. I’ll approach that challenge in a few different ways in the next post.