After App uses Network.framework PrivacyContext Api, dns has been encrypted, that is good. But when using wkwebview to load web page, wireshark captures normal dns request sent by wkwebview. Does wkwebview use DoH to resolve domain? if can, how to config params? If can not, is there anyway to stop wkwebview sending normal dns, such as local proxy.
Does WKWebview support encrypted DNS when using Network.framework PrivacyContext Api?
I don't think so. It only applies to network connections you make directly through that framework - WKWebView operates independently with its own networking stack.